Baserow is an open-source no-code database tool and Airtable alternative. It is a modern database tool that allows you to create a database, web-based application, and API without code. It is built on top of Django and Vue.js and is designed to be easily deployed to a platform like Kubernetes.
This chart can have dependencies on other charts, such as PostgreSQL, Redis, Minio, and Caddy. The chart can be configured to use an existing instance of these services or deploy them as part of the Baserow deployment.
To install the chart with the release name my-baserow run the following commands:
From repo
helm repo add baserow-chart https://baserow.gitlab.io/baserow-chart
helm install my-baserow baserow-chart/baserow --namespace baserow --create-namespace --values config.yaml
From source code
helm dependency update
helm install my-baserow . --namespace baserow --create-namespace
helm upgrade my-baserow . --namespace baserow
Make the following changes to the values file to deploy the Baserow application with the default configuration.
global :
baserow :
domain : "your-baserow-domain.com"
backendDomain : "api.your-baserow-domain.com"
objectsDomain : "objects.your-baserow-domain.com"
You can use the following configuration to use an existing Postgres database and Redis cluster.
redis :
enabled : false
postgresql :
enabled : false
Add the following configuration to the backendSecrets to use an existing managed database and Redis cluster.
backendSecrets :
DATABASE_HOST : "my-baserow-baserow-backend-postgresql"
DATABASE_PORT : "5432"
DATABASE_NAME : "baserow"
DATABASE_USER : "baserow"
DATABASE_PASSWORD : "password"
REDIS_HOST : "my-baserow-baserow-backend-redis"
REDIS_PORT : "6379"
REDIS_PASSWORD : "password"
Caddy is a web server that can be used as an ingress controller. When using Caddy, set the ingress configuration to use Caddy as the ingress controller. Make note of the onDemandAsk configuration, which is used to trigger on-demand TLS certificates. Pointed here to the health check endpoint of caddy itself to always create new certificates. On production workloads set it to the backend api endpoint to check if the domain exists in the database.
caddy :
enabled : true
ingressController :
className : caddy
config :
email : "my@email.com"
proxyProtocol : true
experimentalSmartSort : false
onDemandTLS : true
onDemandAsk : http://:9765/healthz
For each Baserow component, a HorizontalPodAutoscaler can be configured individually. The following example enables autoscaling on the wsgi backend deployment.
baserow-backend-wsgi :
autoscaling :
enabled : true
minReplicas : 2
maxReplicas : 10
targetCPUUtilizationPercentage : 80
targetMemoryUtilizationPercentage : 80
onDemandAsk : "http://my-baserow-baserow-backend-wsgi/api/builder/domains/ask-public-domain-exists/"
On different cloud providers, you may need to configure the Object storage, ingress and Load Balancer differently. Below are some examples of how to configure them.
When deploying to AWS, you can use the following configuration to use S3 for object storage. Make sure to disable minio as it is not needed.
minio :
enabled : false
backendConfigMap :
AWS_STORAGE_BUCKET_NAME : "my-baserow-baserow-backend-bucket"
AWS_S3_CUSTOM_DOMAIN : "my-baserow-baserow-backend-bucket"
AWS_S3_REGION_NAME : "us-east-1"
AWS_S3_ENDPOINT_URL : "https://s3.us-east-1.amazonaws.com/my-baserow-baserow-backend-bucket"
AWS authentication can be set by service account or environment variables. Below is an example of setting the AWS credentials using the environment variables.
backendSecrets :
AWS_ACCESS_KEY_ID : "my-access-key"
AWS_SECRET_ACCESS_KEY : "my-secret-key"
When running on EKS you can also use a service account with an IAM role and permissions. For the service account, you can use the following configuration. To create the corresponding IAM role, refer to the AWS documentation. https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html
global :
baserow :
serviceAccount :
shared : true
create : true
name : baserow
annotations : {}
When deploying to AWS, you can use the following configuration to create a Network Load Balancer. For more information about the annotations, refer to the AWS documentation. https://docs.aws.amazon.com/eks/latest/userguide/network-load-balancing.html
ingress :
enabled : true
caddy :
enabled : true
ingressController :
className : caddy
config :
email : "my@email.com"
proxyProtocol : true
experimentalSmartSort : false
onDemandTLS : true
onDemandAsk : http://:9765/healthz
loadBalancer :
externalTrafficPolicy : "Local"
annotations :
service.beta.kubernetes.io/aws-load-balancer-proxy-protocol : "*"
service.beta.kubernetes.io/aws-load-balancer-scheme : "internet-facing"
service.beta.kubernetes.io/aws-load-balancer-nlb-target-type : "ip"
service.beta.kubernetes.io/aws-load-balancer-healthcheck-protocol : "TCP"
service.beta.kubernetes.io/aws-load-balancer-alpn-policy : "HTTP2Preferred"
When deploying to Digital Ocean, you can use the following configuration to create a Load Balancer. For more information about the annotations, refer to the Digital Ocean documentation. https://docs.digitalocean.com/products/kubernetes/how-to/add-load-balancers/
ingress :
enabled : true
caddy :
enabled : true
ingressController :
config :
email : "my@email.com"
proxyProtocol : true
experimentalSmartSort : false
onDemandTLS : true
onDemandRateLimitInterval : "2m"
onDemandRateLimitBurst : 5
onDemandAsk : http://:9765/healthz
loadBalancer :
externalTrafficPolicy : "Local"
annotations :
service.beta.kubernetes.io/do-loadbalancer-protocol : "http"
service.beta.kubernetes.io/do-loadbalancer-algorithm : "round_robin"
service.beta.kubernetes.io/do-loadbalancer-tls-ports : "443"
service.beta.kubernetes.io/do-loadbalancer-tls-passthrough : "true"
service.beta.kubernetes.io/do-loadbalancer-redirect-http-to-https : "true"
service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol : "true"
Name
Description
Value
global.baserow.imageRegistryGlobal Docker image registry
baserow
global.baserow.imagePullSecretsGlobal Docker registry secret names as an array
[]
global.baserow.image.tagGlobal Docker image tag
1.30.1
global.baserow.serviceAccount.sharedSet to true to share the service account between all application components.
true
global.baserow.serviceAccount.createSet to true to create a service account to share between all application components.
true
global.baserow.serviceAccount.nameConfigure a name for service account to share between all application components.
baserow
global.baserow.serviceAccount.annotationsConfigure annotations for the shared service account.
{}
global.baserow.serviceAccount.automountServiceAccountTokenAutomount the service account token to the pods.
false
global.baserow.backendConfigMapConfigure a name for the backend configmap.
backend-config
global.baserow.backendSecretConfigure a name for the backend secret.
backend-secret
global.baserow.frontendConfigMapConfigure a name for the frontend configmap.
frontend-config
global.baserow.sharedConfigMapConfigure a name for the shared configmap.
shared-config
global.baserow.envFromConfigure secrets or configMaps to be used as environment variables for all components.
[]
global.baserow.domainConfigure the domain for the frontend application.
cluster.local
global.baserow.backendDomainConfigure the domain for the backend application.
api.cluster.local
global.baserow.objectsDomainConfigure the domain for the external facing minio api.
objects.cluster.local
global.baserow.containerSecurityContext.enabledEnabled containers' Security Context
false
global.baserow.containerSecurityContext.seLinuxOptionsSet SELinux options in container
{}
global.baserow.containerSecurityContext.runAsUserSet containers' Security Context runAsUser
""
global.baserow.containerSecurityContext.runAsGroupSet containers' Security Context runAsGroup
""
global.baserow.containerSecurityContext.runAsNonRootSet container's Security Context runAsNonRoot
""
global.baserow.containerSecurityContext.privilegedSet container's Security Context privileged
false
global.baserow.containerSecurityContext.readOnlyRootFilesystemSet container's Security Context readOnlyRootFilesystem
false
global.baserow.containerSecurityContext.allowPrivilegeEscalationSet container's Security Context allowPrivilegeEscalation
false
global.baserow.containerSecurityContext.capabilities.dropList of capabilities to be dropped
[]
global.baserow.containerSecurityContext.capabilities.addList of capabilities to be added
[]
global.baserow.containerSecurityContext.seccompProfile.typeSet container's Security Context seccomp profile
""
global.baserow.securityContext.enabledEnable security context
false
global.baserow.securityContext.fsGroupChangePolicySet filesystem group change policy
Always
global.baserow.securityContext.sysctlsSet kernel settings using the sysctl interface
[]
global.baserow.securityContext.supplementalGroupsSet filesystem extra groups
[]
global.baserow.securityContext.fsGroupGroup ID for the pod
""
Name
Description
Value
generateJwtSecretGenerate a new JWT secret
true
Name
Description
Value
sharedConfigMapAdditional configuration for the shared ConfigMap, key value map.
{}
Name
Description
Value
frontendConfigMap.DOWNLOAD_FILE_VIA_XHRSet to "1" to download files via XHR
1
Name
Description
Value
backendSecretsAdditional configuration for the backend Secrets, key value map.
{}
Name
Description
Value
backendConfigMap.DONT_UPDATE_FORMULAS_AFTER_MIGRATIONSet to "yes" to disable updating formulas after migration
yes
backendConfigMap.SYNC_TEMPLATES_ON_STARTUPSet to "false" to disable syncing templates on startup
false
backendConfigMap.MIGRATE_ON_STARTUPSet to "false" to disable migration on startup
false
backendConfigMap.BASEROW_TRIGGER_SYNC_TEMPLATES_AFTER_MIGRATIONSet to "true" to trigger syncing templates after migration
true
Name
Description
Value
migration.enabledEnabled the migration job
true
migration.image.repositoryMigration job Docker image repository
backend
migration.priorityClassNameKubernetes priority class name for the migration job
""
migration.nodeSelectorNode labels for pod assignment
{}
migration.tolerationsTolerations for pod assignment
[]
migration.affinityAffinity settings for pod assignment
[]
migration.extraEnvExtra environment variables for the migration job
[]
migration.envFromConfigMaps or Secrets to be used as environment variables
[]
migration.volumesVolumes for the migration job
[]
migration.volumeMountsVolume mounts for the migration job
[]
migration.securityContext.enabledEnable security context
false
migration.securityContext.fsGroupChangePolicySet filesystem group change policy
""
migration.securityContext.sysctlsSet kernel settings using the sysctl interface
""
migration.securityContext.supplementalGroupsSet filesystem extra groups
""
migration.securityContext.fsGroupGroup ID for the pod
""
migration.containerSecurityContext.enabledEnabled containers' Security Context
false
migration.containerSecurityContext.seLinuxOptionsSet SELinux options in container
{}
migration.containerSecurityContext.runAsUserSet containers' Security Context runAsUser
""
migration.containerSecurityContext.runAsGroupSet containers' Security Context runAsGroup
""
migration.containerSecurityContext.runAsNonRootSet container's Security Context runAsNonRoot
""
migration.containerSecurityContext.privilegedSet container's Security Context privileged
false
migration.containerSecurityContext.readOnlyRootFilesystemSet container's Security Context readOnlyRootFilesystem
false
migration.containerSecurityContext.allowPrivilegeEscalationSet container's Security Context allowPrivilegeEscalation
false
migration.containerSecurityContext.capabilities.dropList of capabilities to be dropped
[]
migration.containerSecurityContext.capabilities.addList of capabilities to be added
[]
migration.containerSecurityContext.seccompProfile.typeSet container's Security Context seccomp profile
""
Name
Description
Value
baserow-backend-asgi.image.repositoryDocker image repository for the ASGI server.
backend
baserow-backend-asgi.argsArguments passed to the ASGI server.
["gunicorn"]
baserow-backend-asgi.livenessProbe.exec.commandThe command used to check the liveness of the ASGI server.
["/bin/bash","-c","/baserow/backend/docker/docker-entrypoint.sh backend-healthcheck"]
baserow-backend-asgi.livenessProbe.failureThresholdNumber of times the probe can fail before the container is restarted.
3
baserow-backend-asgi.livenessProbe.initialDelaySecondsDelay before the liveness probe is initiated after the container starts.
120
baserow-backend-asgi.livenessProbe.periodSecondsHow often (in seconds) to perform the probe.
30
baserow-backend-asgi.livenessProbe.successThresholdMinimum consecutive successes for the probe to be considered successful after having failed.
1
baserow-backend-asgi.livenessProbe.timeoutSecondsNumber of seconds after which the probe times out.
5
baserow-backend-asgi.readinessProbe.exec.commandThe command used to check the readiness of the ASGI server.
["/bin/bash","-c","/baserow/backend/docker/docker-entrypoint.sh backend-healthcheck"]
baserow-backend-asgi.readinessProbe.failureThresholdNumber of times the probe can fail before the container is restarted.
3
baserow-backend-asgi.readinessProbe.initialDelaySecondsDelay before the readiness probe is initiated after the container starts.
120
baserow-backend-asgi.readinessProbe.periodSecondsHow often (in seconds) to perform the probe.
30
baserow-backend-asgi.readinessProbe.successThresholdMinimum consecutive successes for the probe to be considered successful after having failed.
1
baserow-backend-asgi.readinessProbe.timeoutSecondsNumber of seconds after which the probe times out.
5
baserow-backend-asgi.autoscaling.enabledEnable autoscaling
false
baserow-backend-asgi.autoscaling.minReplicasMinimum number of replicas
2
baserow-backend-asgi.autoscaling.maxReplicasMaximum number of replicas
10
baserow-backend-asgi.autoscaling.targetCPUUtilizationPercentageTarget CPU utilization percentage for autoscaling
80
baserow-backend-asgi.autoscaling.targetMemoryUtilizationPercentageTarget memory utilization percentage for autoscaling
80
Name
Description
Value
baserow-backend-wsgi.image.repositoryDocker image repository for the WSGI server.
backend
baserow-backend-wsgi.argsArguments passed to the WSGI server.
["gunicorn-wsgi","--timeout","120"]
baserow-backend-wsgi.livenessProbe.exec.commandThe command used to check the liveness of the WSGI server.
["/bin/bash","-c","/baserow/backend/docker/docker-entrypoint.sh backend-healthcheck"]
baserow-backend-wsgi.livenessProbe.failureThresholdNumber of times the probe can fail before the container is restarted.
3
baserow-backend-wsgi.livenessProbe.initialDelaySecondsDelay before the liveness probe is initiated after the container starts.
120
baserow-backend-wsgi.livenessProbe.periodSecondsHow often (in seconds) to perform the probe.
30
baserow-backend-wsgi.livenessProbe.successThresholdMinimum consecutive successes for the probe to be considered successful after having failed.
1
baserow-backend-wsgi.livenessProbe.timeoutSecondsNumber of seconds after which the probe times out.
5
baserow-backend-wsgi.readinessProbe.exec.commandThe command used to check the readiness of the wsgi server.
["/bin/bash","-c","/baserow/backend/docker/docker-entrypoint.sh backend-healthcheck"]
baserow-backend-wsgi.readinessProbe.failureThresholdNumber of times the probe can fail before the container is restarted.
3
baserow-backend-wsgi.readinessProbe.initialDelaySecondsDelay before the readiness probe is initiated after the container starts.
120
baserow-backend-wsgi.readinessProbe.periodSecondsHow often (in seconds) to perform the probe.
30
baserow-backend-wsgi.readinessProbe.successThresholdMinimum consecutive successes for the probe to be considered successful after having failed.
1
baserow-backend-wsgi.readinessProbe.timeoutSecondsNumber of seconds after which the probe times out.
5
baserow-backend-wsgi.autoscaling.enabledEnable autoscaling
false
baserow-backend-wsgi.autoscaling.minReplicasMinimum number of replicas
2
baserow-backend-wsgi.autoscaling.maxReplicasMaximum number of replicas
10
baserow-backend-wsgi.autoscaling.targetCPUUtilizationPercentageTarget CPU utilization percentage for autoscaling
80
baserow-backend-wsgi.autoscaling.targetMemoryUtilizationPercentageTarget memory utilization percentage for autoscaling
80
Name
Description
Value
baserow-frontend.image.repositoryDocker image repository for the Web Frontend server.
web-frontend
baserow-frontend.argsArguments passed to the Web Frontend server.
["nuxt"]
baserow-frontend.workingDirWorking Directory for the container.
""
baserow-frontend.livenessProbe.httpGet.pathThe path to check for the liveness probe.
/_health
baserow-frontend.livenessProbe.httpGet.portThe port to check for the liveness probe.
3000
baserow-frontend.livenessProbe.httpGet.schemeThe scheme to use for the liveness probe.
HTTP
baserow-frontend.livenessProbe.failureThresholdNumber of times the probe can fail before the container is restarted.
3
baserow-frontend.livenessProbe.initialDelaySecondsDelay before the liveness probe is initiated after the container starts.
5
baserow-frontend.livenessProbe.periodSecondsHow often (in seconds) to perform the probe.
30
baserow-frontend.livenessProbe.successThresholdMinimum consecutive successes for the probe to be considered successful after having failed.
1
baserow-frontend.livenessProbe.timeoutSecondsNumber of seconds after which the probe times out.
5
baserow-frontend.readinessProbe.httpGet.pathThe path to check for the readiness probe.
/_health
baserow-frontend.readinessProbe.httpGet.portThe port to check for the readiness probe.
3000
baserow-frontend.readinessProbe.httpGet.schemeThe scheme to use for the readiness probe.
HTTP
baserow-frontend.readinessProbe.failureThresholdNumber of times the probe can fail before the container is restarted.
3
baserow-frontend.readinessProbe.initialDelaySecondsDelay before the readiness probe is initiated after the container starts.
5
baserow-frontend.readinessProbe.periodSecondsHow often (in seconds) to perform the probe.
30
baserow-frontend.readinessProbe.successThresholdMinimum consecutive successes for the probe to be considered successful after having failed.
1
baserow-frontend.readinessProbe.timeoutSecondsNumber of seconds after which the probe times out.
5
baserow-frontend.mountConfiguration.backendIf enabled, all the backend service configurations and secrets will be mounted.
false
baserow-frontend.mountConfiguration.frontendIf enabled, all the frontend service configurations and secrets will be mounted.
true
baserow-frontend.service.targetPortThe port the Web Frontend server listens on.
3000
baserow-frontend.autoscaling.enabledEnable autoscaling
false
baserow-frontend.autoscaling.minReplicasMinimum number of replicas
2
baserow-frontend.autoscaling.maxReplicasMaximum number of replicas
10
baserow-frontend.autoscaling.targetCPUUtilizationPercentageTarget CPU utilization percentage for autoscaling
80
baserow-frontend.autoscaling.targetMemoryUtilizationPercentageTarget memory utilization percentage for autoscaling
80
Name
Description
Value
baserow-celery-beat-worker.image.repositoryDocker image repository for the Celery beat worker.
backend
baserow-celery-beat-worker.argsArguments passed to the Celery beat worker.
["celery-beat"]
baserow-celery-beat-worker.replicaCountNumber of replicas for the Celery beat worker.
1
baserow-celery-beat-worker.service.createSet to false to disable creating a service for the Celery beat worker.
false
Name
Description
Value
baserow-celery-export-worker.image.repositoryDocker image repository for the Celery export worker.
backend
baserow-celery-export-worker.argsArguments passed to the Celery export worker.
["celery-exportworker"]
baserow-celery-export-worker.replicaCountNumber of replicas for the Celery export worker.
1
baserow-celery-export-worker.service.createSet to false to disable creating a service for the Celery beat worker.
false
Name
Description
Value
baserow-celery-worker.image.repositoryDocker image repository for the Celery worker.
backend
baserow-celery-worker.argsArguments passed to the Celery worker.
["celery-worker"]
baserow-celery-worker.replicaCountNumber of replicas for the Celery worker.
1
baserow-celery-worker.service.createSet to false to disable creating a service for the Celery beat worker.
false
baserow-celery-worker.livenessProbe.exec.commandThe command used to check the liveness of the WSGI server.
["/bin/bash","-c","/baserow/backend/docker/docker-entrypoint.sh celery-worker-healthcheck"]
baserow-celery-worker.livenessProbe.failureThresholdNumber of times the probe can fail before the container is restarted.
3
baserow-celery-worker.livenessProbe.initialDelaySecondsDelay before the liveness probe is initiated after the container starts.
10
baserow-celery-worker.livenessProbe.periodSecondsHow often (in seconds) to perform the probe.
30
baserow-celery-worker.livenessProbe.successThresholdMinimum consecutive successes for the probe to be considered successful after having failed.
1
baserow-celery-worker.livenessProbe.timeoutSecondsNumber of seconds after which the probe times out.
10
baserow-celery-worker.readinessProbe.exec.commandThe command used to check the readiness of the wsgi server.
["/bin/bash","-c","/baserow/backend/docker/docker-entrypoint.sh celery-worker-healthcheck"]
baserow-celery-worker.readinessProbe.failureThresholdNumber of times the probe can fail before the container is restarted.
3
baserow-celery-worker.readinessProbe.initialDelaySecondsDelay before the readiness probe is initiated after the container starts.
10
baserow-celery-worker.readinessProbe.periodSecondsHow often (in seconds) to perform the probe.
30
baserow-celery-worker.readinessProbe.successThresholdMinimum consecutive successes for the probe to be considered successful after having failed.
1
baserow-celery-worker.readinessProbe.timeoutSecondsNumber of seconds after which the probe times out.
10
Name
Description
Value
baserow-celery-flower.enabledSet to true to enable the Celery Flower monitoring tool.
false
baserow-celery-flower.image.repositoryDocker image repository for the Celery Flower monitoring tool.
backend
baserow-celery-flower.argsArguments passed to the Celery Flower monitoring tool.
["celery-flower"]
baserow-celery-flower.replicaCountNumber of replicas for the Celery Flower monitoring tool.
1
Name
Description
Value
ingress.enabledEnable the Ingress resource
true
ingress.annotations.kubernetes.io/ingress.classIngress class annotation
{"kubernetes.io/ingress.class":"caddy"}
ingress.tlsTLS configuration for the Ingress resource
[]
Name
Description
Value
redis.enabledEnable the Redis database
true
redis.architectureThe Redis architecture
standalone
redis.auth.enabledEnable Redis authentication
true
redis.auth.passwordThe password for the Redis database
baserow
redis.auth.existingSecretThe name of an existing secret containing the database password
""
Name
Description
Value
postgresql.enabledEnable the PostgreSQL database
true
postgresql.auth.databaseThe name of the database
baserow
postgresql.auth.existingSecretThe name of an existing secret containing the database password
""
postgresql.auth.passwordThe password for the database
baserow
postgresql.auth.usernameThe username for the database
baserow
Name
Description
Value
minio.enabledEnable the Minio object storage service
true
minio.networkPolicy.enabledEnable the Minio network policy
false
minio.disableWebUIDisable the Minio web UI
true
minio.provisioning.enabledEnable the Minio provisioning service
true
minio.provisioning.buckets[0].nameName of the bucket to create
baserow
minio.provisioning.extraCommandsList of extra commands to run after provisioning
mc anonymous set download provisioning/baserow
Name
Description
Value
caddy.enabledEnable the Caddy ingress controller
true
caddy.ingressController.classNameIngress class name which caddy will look for on ingress annotations.
caddy
caddy.ingressController.config.emailEmail address to use for Let's Encrypt certificates
my@email.com
caddy.ingressController.config.proxyProtocolEnable the PROXY protocol
true
caddy.ingressController.config.experimentalSmartSortEnable experimental smart sorting
false
caddy.ingressController.config.onDemandTLSEnable on-demand TLS
true
caddy.ingressController.config.onDemandAskURL to check for on-demand TLS
http://:9765/healthz
caddy.loadBalancer.externalTrafficPolicyExternal traffic policy for the load balancer
Local
caddy.loadBalancer.annotationsAnnotations for the load balancer
{}
