3477aa3dae
- Replace GHCR OCI instructions with GitHub Pages repository - Add comprehensive upgrade instructions with examples - Add rollback procedures - Add detailed uninstall instructions - Simplify installation (no authentication required)
11 KiB
Kubernetes Deployment (Helm)
Deploy Pulse to Kubernetes with the bundled Helm chart under deploy/helm/pulse. The chart provisions the Pulse hub (web UI + API) and can optionally run the Docker monitoring agent alongside it. Stable builds are published automatically to the GitHub Container Registry (GHCR) whenever a Pulse release goes out.
The Helm chart ships with the release archives and pairs with the upgraded monitoring engine (staleness tracking, circuit breakers, detailed poll metrics) so Kubernetes clusters benefit from the same adaptive scheduling improvements as bare-metal installs.
Prerequisites
- Kubernetes 1.24 or newer with access to a default
StorageClass - Helm 3.9+
- An ingress controller (only if you plan to expose Pulse through an Ingress)
- (Optional) A Docker-compatible runtime on the nodes where you expect to run the Docker agent; the agent talks to
/var/run/docker.sock
Installing from Helm Repository (recommended)
-
Add the Pulse Helm repository:
helm repo add pulse https://rcourtman.github.io/Pulse/ helm repo update pulse -
Install the chart:
# Latest version helm install pulse pulse/pulse \ --namespace pulse \ --create-namespace # Or pin to specific version helm install pulse pulse/pulse \ --version 4.28.0 \ --namespace pulse \ --create-namespaceCheck available versions:
helm search repo pulse/pulse --versions -
Port-forward the service to finish the first-time security setup:
kubectl -n pulse port-forward svc/pulse 7655:7655 -
Browse to
http://localhost:7655, complete the security bootstrap (admin user + MFA + TLS preferences), and create an API token under Settings → Security for any automation or agents you plan to run.
The chart mounts a PersistentVolumeClaim at /data so database files, credentials, and configuration survive pod restarts. By default it requests 8 GiB with ReadWriteOnce access—adjust via persistence.* in values.yaml.
Working From Source (local packaging)
Need to test local modifications or work offline? Install directly from the checked-out repository:
-
Clone the repository and switch into it.
git clone https://github.com/rcourtman/Pulse.git cd Pulse -
Render or install the chart from
deploy/helm/pulse:helm upgrade --install pulse ./deploy/helm/pulse \ --namespace pulse \ --create-namespace -
Continue with the port-forward and initial setup steps described above.
Common Configuration
Most day-to-day overrides are done in a custom values file:
# file: helm-values.yaml
service:
type: ClusterIP
ingress:
enabled: true
className: nginx
hosts:
- host: pulse.example.com
paths:
- path: /
pathType: Prefix
tls:
- hosts: [pulse.example.com]
secretName: pulse-tls
server:
env:
- name: TZ
value: Europe/Berlin
secretEnv:
create: true
data:
API_TOKENS: docker-agent-token
Runtime Logging Configuration (v4.25.0+)
Configure logging behavior via environment variables:
server:
env:
- name: LOG_LEVEL
value: info # debug, info, warn, error
- name: LOG_FORMAT
value: json # json, text, auto
- name: LOG_FILE
value: /data/logs/pulse.log # Optional: mirror logs to file
- name: LOG_MAX_SIZE
value: "100" # MB per log file
- name: LOG_MAX_BACKUPS
value: "10" # Number of rotated logs to keep
- name: LOG_MAX_AGE
value: "30" # Days to retain logs
Note: Logging changes via environment variables require pod restart. Use Settings → System → Logging in the UI for runtime changes without restart.
Adaptive Polling Configuration (v4.25.0+)
Adaptive polling is enabled by default in v4.25.0. Configure via environment variables:
server:
env:
- name: ADAPTIVE_POLLING_ENABLED
value: "true" # Enable/disable adaptive scheduler
- name: ADAPTIVE_POLLING_BASE_INTERVAL
value: "10s" # Target cadence (default: 10s)
- name: ADAPTIVE_POLLING_MIN_INTERVAL
value: "5s" # Fastest cadence (default: 5s)
- name: ADAPTIVE_POLLING_MAX_INTERVAL
value: "5m" # Slowest cadence (default: 5m)
Note: These settings can also be toggled via Settings → System → Monitoring in the UI without pod restart.
Install or upgrade with the overrides:
helm upgrade --install pulse ./deploy/helm/pulse \
--namespace pulse \
--create-namespace \
-f helm-values.yaml
The server.secretEnv block above pre-seeds one or more API tokens so the UI is immediately accessible and automation can authenticate. If you prefer to manage credentials separately, set server.secretEnv.name to reference an existing secret instead of letting the chart create one.
Accessing Pulse
- Port forward:
kubectl -n pulse port-forward svc/pulse 7655:7655 - Ingress: Enable via the snippet above, or supply your own annotations for external DNS, TLS, etc.
- LoadBalancer: Set
service.type: LoadBalancerand, optionally,service.loadBalancerIP.
Persistence Options
persistence.enabled: Disable to use an ephemeralemptyDirpersistence.existingClaim: Bind to a pre-provisioned PVCpersistence.storageClass: Pin to a specific storage classpersistence.size: Resize the default PVC request
Enabling the Docker Agent
The optional agent reports Docker host metrics back to the Pulse hub. Enable it once you have a valid API token:
# agent-values.yaml
agent:
enabled: true
env:
- name: PULSE_URL
value: https://pulse.example.com
secretEnv:
create: true
data:
PULSE_TOKEN: docker-agent-token
dockerSocket:
enabled: true
path: /var/run/docker.sock
hostPathType: Socket
Apply with (choose one):
-
Published chart:
helm upgrade pulse oci://ghcr.io/rcourtman/pulse-chart \ --install \ --version <pulse-version> \ --namespace pulse \ -f agent-values.yaml -
Local checkout:
helm upgrade --install pulse ./deploy/helm/pulse \ --namespace pulse \ -f agent-values.yaml
Notes:
- The agent expects a Docker-compatible runtime and access to the Docker socket. Set
agent.dockerSocket.enabled: falseif you run the agent elsewhere or publish the Docker API securely. - Use separate API tokens per host; list multiple tokens with
;or,separators inPULSE_TARGETSif needed. - Run the agent as a
DaemonSet(default) to cover every node, or switch toagent.kind: Deploymentfor a single pod.
Upgrades and Removal
Upgrading Pulse
-
Update the Helm repository:
helm repo update pulse -
Check available versions:
helm search repo pulse/pulse --versions -
Upgrade to latest:
helm upgrade pulse pulse/pulse -n pulse -
Or upgrade to specific version:
helm upgrade pulse pulse/pulse --version 4.28.0 -n pulse -
With custom values file:
helm upgrade pulse pulse/pulse -n pulse -f custom-values.yaml
Rollback
If an upgrade causes issues:
# List revisions
helm history pulse -n pulse
# Rollback to previous revision
helm rollback pulse -n pulse
# Or rollback to specific revision
helm rollback pulse 3 -n pulse
Uninstall
# Remove Pulse but keep PVCs
helm uninstall pulse -n pulse
# Remove everything including PVCs
helm uninstall pulse -n pulse
kubectl delete pvc -n pulse -l app.kubernetes.io/name=pulse
Post-Upgrade Verification (v4.25.0+)
After upgrading to v4.25.0 or newer, verify the deployment:
-
Check update history
# Via UI # Navigate to Settings → System → Updates # Via API kubectl -n pulse exec deploy/pulse -- curl -s http://localhost:7655/api/updates/history | jq '.entries[0]' -
Verify scheduler health (adaptive polling)
kubectl -n pulse exec deploy/pulse -- curl -s http://localhost:7655/api/monitoring/scheduler/health | jqExpected response:
"enabled": truequeue.depthreasonable (< instances × 1.5)deadLetter.count= 0 or only known issuesinstances[]populated with your nodes
-
Check pod logs
kubectl -n pulse logs deploy/pulse --tail=50 -
Verify rollback capability
- Pulse v4.24.0+ logs update history
- Rollback available via Settings → System → Updates → Restore previous version
- Or via API:
POST /api/updates/rollback(if supported in Kubernetes deployments)
Service Naming
Important: The Helm chart creates a service named svc/pulse on port 7655 by default, matching standard Kubernetes naming conventions.
Service name variations:
- Kubernetes/Helm:
svc/pulse(Deployment:pulse, Service:pulse) - Systemd installations:
pulse.serviceorpulse-backend.service(legacy) - Hot-dev scripts:
pulse-hot-dev(development only, not used in production clusters)
To check the active service:
# Kubernetes
kubectl -n pulse get svc pulse
# Systemd
systemctl status pulse
Troubleshooting
Verify Scheduler Health After Rollout
v4.24.0+ includes adaptive polling. After any Helm upgrade or rollback, verify:
kubectl -n pulse exec deploy/pulse -- curl -s http://localhost:7655/api/monitoring/scheduler/health | jq
Look for:
enabled: true- Queue depth stable
- No stuck circuit breakers
- Empty or stable dead-letter queue
Port Configuration Changes
Port changes via service.port or environment variable FRONTEND_PORT take effect immediately but should be documented in change logs. v4.24.0 records restarts and configuration changes in update history.
To verify port configuration:
# Check service
kubectl -n pulse get svc pulse -o jsonpath='{.spec.ports[0].port}'
# Check pod environment
kubectl -n pulse exec deploy/pulse -- env | grep PORT
Reference
- Review every available option in
deploy/helm/pulse/values.yaml - Inspect published charts without installing:
helm show values oci://ghcr.io/rcourtman/pulse-chart --version <version> - Helm template rendering preview:
helm template pulse ./deploy/helm/pulse -f <values> NOTES.txtemitted by Helm summarizes the service endpoint and agent prerequisites after each install or upgrade
Related Documentation
- Scheduler Health API - Monitor adaptive polling status
- Configuration Guide - System settings and environment variables
- Adaptive Polling Operations - Operational procedures
- Reverse Proxy Setup - Configure ingress with rate limit headers