High Availability (HA) Deployment

While OpenObserve can be installed and run in HA mode on bare metal servers, VMs, Kubernetes and possibly other platforms, we currently provide installation using helm charts officially. We may provide additional installers like terraform in future. Local disk storage is not supported in HA mode and as such configuring an object store is mandatory.

Helm charts

For accessing the object store we recommend the best security practice of using IAM roles wherever possible. In case of Amazon EKS you can use IAM roles for Service Accounts (IRSA).

You must download the values.yaml file and make required changes. At a minimum you must provide the details of bucket to be used for data storage and credentials (IAM role or keys) to access it. You can download the file using following command:

curl https://raw.githubusercontent.com/openobserve/openobserve-helm-chart/main/charts/openobserve/values.yaml -o values.yaml

Metadata store

You can use PostgreSQL or MySQL as metadata storage.

The official helm chart (starting Feb 23rd 2024) uses PostgreSQL as metadata store by default. It installs a PostgreSQL cluster (1 primary + 1 replica) for you. cloudnative-pg operator is used to install/manage the PostgreSQL cluster.

PostgreSQL

You don't need to do anything if you are using the official helm chart and want to use bundled PostgreSQL.

If you want to use external PostgreSQL, you can configure as below. You need to create the database first. In this example we use openobserve as database name.

config:
  ZO_META_STORE: "postgres"

auth:
  ZO_META_POSTGRES_DSN: "postgres://postgres:12345678@localhost:5432/openobserve"

postgres:
  enabled: false # disable bundled PostgreSQL

MySQL

You need create the database first, in the example we use openobserve as database name.

config:
  ZO_META_STORE: "mysql"
  ZO_META_MYSQL_DSN: "mysql://user:12345678@localhost:3306/openobserve"

NATS Cluster coordinator

NATS is used as cluster coordinator by OpenObserve

While using official helm chart, NATS for the cluster is already configured for you. You don't need additional configuration.

Configuration

Amazon EKS + S3

You must set a minimum of 2 values:

1. S3 bucket where data will be stored

   config:
     ZO_S3_BUCKET_NAME: "mysuperduperbucket"
   

2. IAM role for the serviceAccount to gain AWS IAM credentials to access s3

   serviceAccount:
     annotations:
       eks.amazonaws.com/role-arn: arn:aws:iam::12345353456:role/zo-s3-eks
   

Once you have configured the above in your values.yaml file, you can run the below commands to install OpenObserve.

Follow AWS documentation to enable IRSA and create an IAM role that you can use. You can also refer to the IRSA introduction blog.

Sample IAM policy.

{
  "Id": "Policy1678319681097",
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "Stmt1678319677242",
      "Action": [
        "s3:PutObject",
        "s3:GetObject",
        "s3:ListBucket",
        "s3:DeleteObject"
      ],
      "Effect": "Allow",
      "Resource": "arn:aws:s3:::mysuperduperbucket/*"
    }
  ]
}

Watch this video on how to do it:

Any Kubernetes + s3

Add/Modify following to values.yaml

1. S3 bucket where data will be stored

   auth:
     ZO_S3_ACCESS_KEY: "e.g.AKIAIOSFODNN7EXAMPLE"
     ZO_S3_SECRET_KEY: "e.g.wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY"
   config:
     ZO_S3_BUCKET_NAME: "mysuperduperbucket"
     ZO_S3_REGION_NAME: "us-west-1"
   

Any Kubernetes + minio

Add/Modify following to values.yaml

1. S3 bucket where data will be stored

   auth:
     ZO_S3_ACCESS_KEY: "e.g.AKIAIOSFODNN7EXAMPLE"
     ZO_S3_SECRET_KEY: "e.g.wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY"
   config:
     ZO_S3_SERVER_URL: "http://minio-server-url"
     ZO_S3_BUCKET_NAME: "mysuperduperbucket"
     ZO_S3_REGION_NAME: "us-west-1"
     ZO_S3_PROVIDER: "minio"
   

Any Kubernetes + GCS

Add/Modify following to values.yaml

1. GCS bucket where data will be stored

   auth:
     ZO_S3_ACCESS_KEY: "e.g.AKIAIOSFODNN7EXAMPLE"
     ZO_S3_SECRET_KEY: "e.g.wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY"
   config:
     ZO_S3_SERVER_URL: "https://storage.googleapis.com"
     ZO_S3_BUCKET_NAME: "mysuperduperbucket"
     ZO_S3_REGION_NAME: "auto"
     ZO_S3_PROVIDER: "s3"
     ZO_S3_FEATURE_HTTP1_ONLY: "true"
   

You can generate keys for GCS bucket using following steps:

1. Go to Google cloud console > Cloud Storage > Settings > Interoperability
2. Make sure you are in the right project.
3. Access keys for your user account > Click "CREATE A KEY"

Watch this video on how to do it:

Any Kubernetes + Openstack swift

Add/Modify following to values.yaml

1. swift bucket where data will be stored

   auth:
     ZO_S3_ACCESS_KEY: "e.g.AKIAIOSFODNN7EXAMPLE"
     ZO_S3_SECRET_KEY: "e.g.wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY"
   config:
     ZO_S3_SERVER_URL: "swift url"
     ZO_S3_BUCKET_NAME: "mysuperduperbucket"
     ZO_S3_REGION_NAME: "us-west-1"
     ZO_S3_PROVIDER: "s3"
   

Any Kubernetes + civo object store

Add/Modify following to values.yaml

1. civo object store will store the data

   auth:
     ZO_S3_ACCESS_KEY: "e.g.AKIAIOSFODNN7EXAMPLE"
     ZO_S3_SECRET_KEY: "e.g.wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY"
   config:
     ZO_S3_SERVER_URL: "civo object store url"
     ZO_S3_BUCKET_NAME: "mysuperduperbucket"
     ZO_S3_REGION_NAME: "us-west-1"
     ZO_S3_PROVIDER: "s3"
     ZO_S3_FEATURE_FORCE_PATH_STYLE: "true"
   

Setup

Installation

Install the Cloud Native PostgreSQL Operator. This is a prerequisite for openobserve helm chart. This helm chart sets up a postgres database cluster (1 primary + 1 replica) and uses it as metadata store of OpenObserve.

kubectl apply --server-side -f \
  https://raw.githubusercontent.com/cloudnative-pg/cloudnative-pg/release-1.23/releases/cnpg-1.23.1.yaml

Install OpenObserve using the helm chart.

helm repo add openobserve https://charts.openobserve.ai
helm repo update

kubectl create ns openobserve

helm --namespace openobserve -f values.yaml install o2 openobserve/openobserve

Uninstallation

helm --namespace openobserve delete o2