TykTechnologies · singhpr · Jan 18, 2024 · Jan 12, 2024 · Jan 12, 2024 · Jan 12, 2024
@@ -44,8 +44,6 @@ global:
 
   secrets:
     # tyk_analytics.conf admin_secret
-    # tib.conf TykAPISettings.GatewayConfig.AdminSecret
-    # tib.conf TykAPISettings.DashboardConfig.AdminSecret
     AdminSecret: "12345"
     # If you don't want to store plaintext secrets in the Helm value file and would
     # rather provide the k8s Secret externally please populate the value below

@@ -131,3 +131,8 @@ follow these steps to enable TLS:
 > - If necessary, either enable `insecureSkipVerify` via `dashboard.tls.certificates`, or mount CA information through `dashboard.extraVolumes` and `dashboard.extraVolumeMounts`.
 > - If the `tyk-bootstrap` chart is used to bootstrap the Tyk Dashboard, ensure that it has certificates to send requests to the Tyk Dashboard or enable `insecureSkipVerify` in the `tyk-bootstrap` chart.
 > - If the Tyk Gateway connects to the Tyk Dashboard, confirm that the Tyk Gateway has appropriate certificates for connecting to the Tyk Dashboard
+
+#### Embedded TIB
+Starting from Tyk v3.0 TIB has been added as a built-in feature of the Tyk Dashboard. You no longer have to setup a separated instance of the service to make it work with the Dashboard.
+
+User can enable in-built TIB simply by setting `tib.enabled` to true.
@@ -209,6 +209,12 @@ spec:
           - name: TYK_DB_MONGODRIVER
             value: "{{ default "mgo" .Values.global.mongo.driver}}"
           {{ end }}
+
+          {{- if .Values.tib }}
+          - name:  TYK_DB_TIB_ENABLED
+            value: {{ .Values.tib.enabled | quote }}
+          {{- end }}
+
           {{- if .Values.dashboard.extraEnvs }}
           {{- include "tyk-dashboard.tplvalues.render" (dict "value" .Values.dashboard.extraEnvs "context" $) | nindent 10 }}
           {{- end }}

@@ -47,8 +47,6 @@ global:
     # tyk_analytics.conf shared_node_secret
     APISecret: CHANGEME
     # tyk_analytics.conf admin_secret
-    # tib.conf TykAPISettings.GatewayConfig.AdminSecret
-    # tib.conf TykAPISettings.DashboardConfig.AdminSecret
     AdminSecret: "12345"
     # If you don't want to store plaintext secrets in the Helm value file and would
     # rather provide the k8s Secret externally please populate the value below
@@ -387,4 +385,7 @@ portal:
 
     # tls corresponds to the tls configuration if Ingress rules use TLS
     tls: []
-
+# tib is used to configure Tyk Identity Broker(TIB) connection details
+tib:
+  # enabled is used to enable/disable embedded TIB
+  enabled: false
@@ -746,6 +746,11 @@ follow these steps to enable TLS:
 > - If the `tyk-bootstrap` chart is used to bootstrap the Tyk Dashboard, ensure that it has certificates to send requests to the Tyk Dashboard or enable `insecureSkipVerify` in the `tyk-bootstrap` chart.
 > - If the Tyk Gateway connects to the Tyk Dashboard, confirm that the Tyk Gateway has appropriate certificates for connecting to the Tyk Dashboard
 
+#### Embedded TIB
+Starting from Tyk v3.0 TIB has been added as a built-in feature of the Tyk Dashboard. You no longer have to setup a separated instance of the service to make it work with the Dashboard.
+
+User can enable in-built TIB simply by setting `tyk-dashboard.tib.enabled` to true.
+
 ### Tyk Bootstrap
 
 To enable bootstrapping, set `global.components.bootstrap` to `true`. It would run [tyk-k8s-bootstrap](https://github.com/TykTechnologies/tyk-k8s-bootstrap) to bootstrap `tyk-stack` and to create Kubernetes secrets that can be utilized in Tyk Operator and Tyk Enterprise Developer Portal.

@@ -69,8 +69,6 @@ global:
     # tyk_analytics.conf shared_node_secret
     APISecret: CHANGEME
     # tyk_analytics.conf admin_secret
-    # tib.conf TykAPISettings.GatewayConfig.AdminSecret
-    # tib.conf TykAPISettings.DashboardConfig.AdminSecret
     AdminSecret: "12345"
     # If you don't want to store plaintext secrets in the Helm value file and would
     # rather provide the k8s Secret externally please populate the value below
@@ -938,6 +936,10 @@ tyk-dashboard:
             - path: /
               pathType: ImplementationSpecific
       tls: []
+  # tib is used to configure Tyk Identity Broker(TIB) connection details
+  tib:
+    # enabled is used to enable/disable embedded TIB
+    enabled: false
 
 tyk-dev-portal:
   # Sensitive configuration of Portal could be set using k8s secret