[TT-10798] Added support embedded TIB in dashboard and tyk-stack (#212)

* Add support embedded TIB in dashboard and tyk-stack * Update readmes * Update notes of values file
TykTechnologies · Jan 18, 2024 · a9bfca5 · a9bfca5
1 parent 951406f
commit a9bfca5
Show file tree

Hide file tree

Showing 6 changed files with 24 additions and 7 deletions.
diff --git a/components/tyk-bootstrap/values.yaml b/components/tyk-bootstrap/values.yaml
@@ -44,8 +44,6 @@ global:
 
   secrets:
     # tyk_analytics.conf admin_secret
-    # tib.conf TykAPISettings.GatewayConfig.AdminSecret
-    # tib.conf TykAPISettings.DashboardConfig.AdminSecret
     AdminSecret: "12345"
     # If you don't want to store plaintext secrets in the Helm value file and would
     # rather provide the k8s Secret externally please populate the value below

diff --git a/components/tyk-dashboard/README.md b/components/tyk-dashboard/README.md
@@ -131,3 +131,8 @@ follow these steps to enable TLS:
 > - If necessary, either enable `insecureSkipVerify` via `dashboard.tls.certificates`, or mount CA information through `dashboard.extraVolumes` and `dashboard.extraVolumeMounts`.
 > - If the `tyk-bootstrap` chart is used to bootstrap the Tyk Dashboard, ensure that it has certificates to send requests to the Tyk Dashboard or enable `insecureSkipVerify` in the `tyk-bootstrap` chart.
 > - If the Tyk Gateway connects to the Tyk Dashboard, confirm that the Tyk Gateway has appropriate certificates for connecting to the Tyk Dashboard
+
+#### Embedded TIB
+Starting from Tyk v3.0 TIB has been added as a built-in feature of the Tyk Dashboard. You no longer have to setup a separated instance of the service to make it work with the Dashboard.
+
+User can enable in-built TIB simply by setting `tib.enabled` to true.
diff --git a/components/tyk-dashboard/templates/deployment-dashboard.yaml b/components/tyk-dashboard/templates/deployment-dashboard.yaml
@@ -209,6 +209,12 @@ spec:
           - name: TYK_DB_MONGODRIVER
             value: "{{ default "mgo" .Values.global.mongo.driver}}"
           {{ end }}
+
+          {{- if .Values.tib }}
+          - name:  TYK_DB_TIB_ENABLED
+            value: {{ .Values.tib.enabled | quote }}
+          {{- end }}
+
           {{- if .Values.dashboard.extraEnvs }}
           {{- include "tyk-dashboard.tplvalues.render" (dict "value" .Values.dashboard.extraEnvs "context" $) | nindent 10 }}
           {{- end }}

diff --git a/components/tyk-dashboard/values.yaml b/components/tyk-dashboard/values.yaml
@@ -47,8 +47,6 @@ global:
     # tyk_analytics.conf shared_node_secret
     APISecret: CHANGEME
     # tyk_analytics.conf admin_secret
-    # tib.conf TykAPISettings.GatewayConfig.AdminSecret
-    # tib.conf TykAPISettings.DashboardConfig.AdminSecret
     AdminSecret: "12345"
     # If you don't want to store plaintext secrets in the Helm value file and would
     # rather provide the k8s Secret externally please populate the value below
@@ -387,4 +385,7 @@ portal:
 
     # tls corresponds to the tls configuration if Ingress rules use TLS
     tls: []
-
+# tib is used to configure Tyk Identity Broker(TIB) connection details
+tib:
+  # enabled is used to enable/disable embedded TIB
+  enabled: false
diff --git a/tyk-stack/README.md b/tyk-stack/README.md
@@ -746,6 +746,11 @@ follow these steps to enable TLS:
 > - If the `tyk-bootstrap` chart is used to bootstrap the Tyk Dashboard, ensure that it has certificates to send requests to the Tyk Dashboard or enable `insecureSkipVerify` in the `tyk-bootstrap` chart.
 > - If the Tyk Gateway connects to the Tyk Dashboard, confirm that the Tyk Gateway has appropriate certificates for connecting to the Tyk Dashboard
 
+#### Embedded TIB
+Starting from Tyk v3.0 TIB has been added as a built-in feature of the Tyk Dashboard. You no longer have to setup a separated instance of the service to make it work with the Dashboard.
+
+User can enable in-built TIB simply by setting `tyk-dashboard.tib.enabled` to true.
+
 ### Tyk Bootstrap
 
 To enable bootstrapping, set `global.components.bootstrap` to `true`. It would run [tyk-k8s-bootstrap](https://github.com/TykTechnologies/tyk-k8s-bootstrap) to bootstrap `tyk-stack` and to create Kubernetes secrets that can be utilized in Tyk Operator and Tyk Enterprise Developer Portal.

diff --git a/tyk-stack/values.yaml b/tyk-stack/values.yaml
@@ -69,8 +69,6 @@ global:
     # tyk_analytics.conf shared_node_secret
     APISecret: CHANGEME
     # tyk_analytics.conf admin_secret
-    # tib.conf TykAPISettings.GatewayConfig.AdminSecret
-    # tib.conf TykAPISettings.DashboardConfig.AdminSecret
     AdminSecret: "12345"
     # If you don't want to store plaintext secrets in the Helm value file and would
     # rather provide the k8s Secret externally please populate the value below
@@ -938,6 +936,10 @@ tyk-dashboard:
             - path: /
               pathType: ImplementationSpecific
       tls: []
+  # tib is used to configure Tyk Identity Broker(TIB) connection details
+  tib:
+    # enabled is used to enable/disable embedded TIB
+    enabled: false
 
 tyk-dev-portal:
   # Sensitive configuration of Portal could be set using k8s secret