Helm Valuesリファレンス

このドキュメントは、Jitera Helmチャートのすべての設定可能な値の包括的なリファレンスを提供します。

クイックリファレンス: オーバーライド必須パラメータ

以下のパラメータはvalues.yamlにプレースホルダーのデフォルト値が設定されており、デプロイ前に必ずオーバーライドする必要があります。完全な例についてはAWS EKSまたはAzure AKSガイドを参照してください。

カテゴリ	パラメータ	備考
レジストリ	`registryCredentials.server`, `.username`, `.password`, `.email`	Jiteraから提供
ドメイン	`ingress.domainName`, `ingress.chatDomainName`	アプリケーションドメイン
JWT	`jwt.secret`	生成: `pwgen 64 1`
内部シークレット	`automation.env.PUBLIC_OPEN_AI_INTERNAL_SECRET`, `ultron.secret.PUBLIC_OPEN_AI_INTERNAL_SECRET`, `credentials.hasura.HASURA_GRAPHQL_ADMIN_SECRET`, `credentials.boost.JITERA_BOOST_API_KEY_MAIN`, `credentials.boost.JITERA_BOOST_AUTO_API_KEY`, `credentials.boost.JITERA_BOOST_OPENAI_KEY_LITELLM`, `credentials.html_conversion.BEARER_TOKEN`	ユニークな値を生成。一部は同じ値を設定（例を参照）
データベース認証情報	`postgresql.postgresql.`, `pgvector.postgresql.`, `mongodb.auth.*`, `rabbitmq.auth.password`, `rabbitmq.auth.erlangCookie`	ユーザー名、パスワード、データベース名を設定
ストレージ	`storage.provider` + プロバイダー固有シークレット（`storage.secret.aws.` または `storage.secret.azure.`）、`document_converter.env.USE_AZURE`、`ultron.env.STORAGE_DISK`	S3、AzureStorage、またはMinioを選択
メール	`mailer.smtp_settings.*`, `mailer.default_from_email`	SMTPサーバー認証情報
会社情報	`company.name`, `.brand_name`, `.domain`	会社のアイデンティティ
AIプロバイダー	`openai.AI_MODE`（`azure`または`open_ai`）+ プロバイダー固有キー	1つのプライマリプロバイダーを選択。追加プロバイダー（Bedrock、Geminiなど）は併用可能
TLS	`kong.proxy.annotations`（AWS ACM）またはcert-manager（Azure）	プロバイダー固有のTLS設定

オプションだが一般的に設定されるもの

カテゴリ	パラメータ	デフォルト動作
インテグレーション	`credentials.github.`, `credentials.gitlab.`, `credentials.figma.*`	未設定 — Git/デザイン連携無効
サインアップ制御	`automation.env.SECURED_SIGN_UP`, `frontend.env.REACT_APP_SECURED_SIGN_UP`	`false` — オープン登録
StorageClass	`postgresql.persistence.storageClassName`, `pgvector.persistence.storageClassName`, `mongodb.persistence.storageClass`	クラスターデフォルト
外部データベース	`externalPostgres.`, `externalRedis.`, `externalMongodb.`, `externalPgvector.`, `externalRabbitmq.*`	無効 — クラスター内データベースを使用
モニタリング	`monitoring.*`, `ingress.grafana.domain`, `ingress.prometheus.domain`	デフォルトで有効
エラーモニタリング	`credentials.rollbar.*`, `credentials.boost.JITERA_BOOST_ROLLBAR_ACCESS_TOKEN`	無効

凡例

必須ステータス

Required: デプロイ前に設定が必要
Optional: デフォルト値があり省略可能
Conditional: 特定の機能が有効な場合のみ必要

許容値

The “Allowed Values” column indicates what values are acceptable for each parameter:

Specific values in backticks (e.g., true, false) indicate exact allowed values
General descriptions (e.g., “String”, “Number”) indicate the value type
Ranges or formats (e.g., “1-65535”, “Duration”) indicate the expected format

環境

The “Environment” column indicates which deployment environments this parameter applies to:

All: Applicable to all environments (aws, azure, on-premises)
aws: Specific to AWS deployments only
azure: Specific to Azure deployments only
on-premises: Specific to on-premises deployments only

Note: Currently all parameters are marked as “All” and will be refined to specific environments in future updates.

ユーザー変更可否

The “User Changeable” column indicates whether users should modify this value:

Yes: Must be changed/configured before deployment
No: Should not be modified (internal configuration, auto-generated, or advanced settings)
Optional: Can be customized based on your requirements (tuning, optimization)
Conditional: Only relevant when specific features are enabled

Container Registry Configuration
Container Images
JWT Configuration
Credentials
Audit Logs
OpenAI Configuration
Ingress Configuration
Storage Configuration
Company Settings
Email Configuration
Self-hosted SMTP Server
Microservices
- Frontend
- SWEF
- Automation
- Ultron
- Document Converter
- vLLM
- LiteLLM
- Boost
- Playwright
- HTML Conversion
Database and Middleware Services
- PostgreSQL
- Redis
- MongoDB
- RabbitMQ
- Hasura
- Kong
- PGVector
External Services
Monitoring Stack
MinIO
Mail Service

Container Registry Configuration

`registryCredentials`

Configuration for the container registry used to pull Docker images.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`registryCredentials.server`	string	`<REPLACE_WITH_YOUR_REGISTRY_URL>`	Conditional	User-provided value	All	Yes	Container registry URL (required unless using alternative authentication methods)
`registryCredentials.username`	string	`<REPLACE_WITH_YOUR_REGISTRY_USER>`	Conditional	String	All	Yes	Registry username (required unless using alternative authentication methods)
`registryCredentials.password`	string	`<REPLACE_WITH_YOUR_REGISTRY_PASSWORD>`	Conditional	Secure random string	All	Yes	Registry password (required unless using alternative authentication methods)
`registryCredentials.email`	string	`<REPLACE_WITH_YOUR_REGISTRY_EMAIL>`	Conditional	Valid email address	All	Yes	Registry email (required unless using alternative authentication methods)

Note: These credentials can be omitted if using alternative authentication methods such as:

Azure Container Registry (ACR): Service principal, managed identity, or Azure AD authentication
AWS Elastic Container Registry (ECR): IAM roles for service accounts (IRSA) or EC2 instance profiles
Google Container Registry (GCR): Workload Identity or service account keys
Private registries: Pre-configured imagePullSecrets in your Kubernetes cluster

Container Images

`image`

Docker image configurations for all Jitera services.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`image.imagePullSecrets`	string	`acr-secret`	Optional	Secure random string	All	Optional	Name of the Kubernetes secret for pulling images
`image.frontend.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/jitera_frontend`	Optional	Valid image repository URL	All	No	Frontend image repository
`image.frontend.tag`	string	`v26.02.03`	Optional	Valid image tag	All	No	Frontend image tag
`image.frontend_core.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/jitera_frontend_core`	Optional	Valid image repository URL	All	No	Frontend Core image repository
`image.frontend_core.tag`	string	`v26.02.16.2`	Optional	Valid image tag	All	No	Frontend Core image tag
`image.swef.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/jitera_swef`	Optional	Valid image repository URL	All	No	SWEF image repository
`image.swef.tag`	string	`v26.02.03-s`	Optional	Valid image tag	All	No	SWEF image tag
`image.automation.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/jitera_automation`	Optional	Valid image repository URL	All	No	Automation service image repository
`image.automation.tag`	string	`v26.02.16.2`	Optional	Valid image tag	All	No	Automation service image tag
`image.ultron.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/jitera_ultron`	Optional	Valid image repository URL	All	No	Ultron service image repository
`image.ultron.tag`	string	`v26.02.16.2-u`	Optional	Valid image tag	All	No	Ultron service image tag
`image.document_converter.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/jitera_document_converter`	Optional	Valid image repository URL	All	No	Document converter image repository
`image.document_converter.tag`	string	`v25.09.17`	Optional	Valid image tag	All	No	Document converter image tag
`image.hasura.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/jitera_automation_hasura`	Optional	Valid image repository URL	All	No	Hasura image repository
`image.hasura.tag`	string	`v26.02.16.2`	Optional	Valid image tag	All	No	Hasura image tag
`image.playwright.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/jitera_playwright`	Optional	Valid image repository URL	All	No	Playwright image repository
`image.playwright.tag`	string	`latest`	Optional	Valid image tag	All	No	Playwright image tag
`image.vllm.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/vllm-openai`	Optional	Valid image repository URL	All	No	vLLM image repository
`image.vllm.tag`	string	`v0.7.0`	Optional	Valid image tag	All	No	vLLM image tag
`image.litellm.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/litellm`	Optional	Valid image repository URL	All	No	LiteLLM image repository
`image.litellm.tag`	string	`v1.81.3-stable`	Optional	Valid image tag	All	No	LiteLLM image tag
`image.boost.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/jitera_boost`	Optional	Valid image repository URL	All	No	Boost service image repository
`image.boost.tag`	string	`v26.02.16.4`	Optional	Valid image tag	All	No	Boost service image tag
`image.html_conversion.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/jitera_html_conversion`	Optional	Valid image repository URL	All	No	HTML conversion image repository
`image.html_conversion.tag`	string	`v26.02.23.1`	Optional	Valid image tag	All	No	HTML conversion image tag
`image.minio.repository`	string	`jiteradockerimage.azurecr.io/jiteradockerimage/minio`	Optional	Valid image repository URL	All	No	MinIO image repository
`image.minio.tag`	string	`RELEASE.2024-12-18T13-15-44Z`	Optional	Valid image tag	All	No	MinIO image tag
`image.mail.repository`	string	`boky/postfix`	Optional	Valid image repository URL	All	No	Postfix mail server image repository
`image.mail.tag`	string	`4.4.0`	Optional	Valid image tag	All	No	Postfix mail server image tag

Monitoring Stack Images

Parameter	Type	Default	Required
`image.monitoring.prometheus.repository`	string	`prom/prometheus`	Prometheus image repository
`image.monitoring.prometheus.tag`	string	`v3.1.0`	Prometheus image tag
`image.monitoring.grafana.repository`	string	`grafana/grafana`	Grafana image repository
`image.monitoring.grafana.tag`	string	`11.6.5`	Grafana image tag
`image.monitoring.loki.repository`	string	`grafana/loki`	Loki image repository
`image.monitoring.loki.tag`	string	`3.3.1`	Loki image tag
`image.monitoring.promtail.repository`	string	`grafana/promtail`	Promtail image repository
`image.monitoring.promtail.tag`	string	`3.3.1`	Promtail image tag
`image.monitoring.opentelemetry.repository`	string	`otel/opentelemetry-collector-contrib`	OpenTelemetry collector image repository
`image.monitoring.opentelemetry.tag`	string	`0.117.0`	OpenTelemetry collector image tag
`image.monitoring.kubeStateMetrics.repository`	string	`registry.k8s.io/kube-state-metrics/kube-state-metrics`	Kube-state-metrics image repository
`image.monitoring.kubeStateMetrics.tag`	string	`v2.14.0`	Kube-state-metrics image tag
`image.monitoring.nodeExporter.repository`	string	`prom/node-exporter`	Node exporter image repository
`image.monitoring.nodeExporter.tag`	string	`v1.8.2`	Node exporter image tag
`image.monitoring.blackboxExporter.repository`	string	`prom/blackbox-exporter`	Blackbox exporter image repository
`image.monitoring.blackboxExporter.tag`	string	`v0.25.0`	Blackbox exporter image tag
`image.monitoring.tempo.repository`	string	`grafana/tempo`	Tempo image repository
`image.monitoring.tempo.tag`	string	`2.7.0`	Tempo image tag

JWT Configuration

`jwt`

JSON Web Token configuration for authentication.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`jwt.secret`	string	`<REPLACE_WITH_YOUR_JWT_SECRET>`	Required	Secure random string	All	Yes	Secret used to sign and verify JWT tokens. Generate with: `pwgen 64 1`
`jwt.key`	string	`jitera.selfhosted`	Required	Secure random string	All	Optional	Key used in conjunction with the secret for token operations
`jwt.algorithm`	string	`HS512`	Required	String	All	Optional	Cryptographic algorithm for signing JWT (HMAC using SHA-512)

Credentials

`credentials.github`

GitHub App credentials for repository integration.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`credentials.github.app_name`	string	`<REPLACE_WITH_YOUR_CREDENTIAL>`	Optional	String	All	Yes	GitHub App name (required only if using GitHub integration)
`credentials.github.client_id`	string	`<REPLACE_WITH_YOUR_CREDENTIAL>`	Optional	User-provided value	All	Yes	GitHub OAuth client ID (required only if using GitHub integration)
`credentials.github.client_secret`	string	`<REPLACE_WITH_YOUR_CREDENTIAL>`	Optional	Secure random string	All	Yes	GitHub OAuth client secret (required only if using GitHub integration)

`credentials.git_webhook_secret`

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`credentials.git_webhook_secret`	string	`<REPLACE_WITH_YOUR_CREDENTIAL>`	Optional	Secure random string	All	Yes	Secret for validating GitHub webhook requests (required only if using GitHub integration)

`credentials.translator`

Translation service configuration.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`credentials.translator.translator_service`	string	`aws_translate`	Optional	aws_translate, azure	All	Optional	Translation service provider (options: `aws_translate`, `azure`)
`credentials.translator.azure.TRANSLATOR_TEXT_KEY`	string	`<REPLACE_WITH_YOUR_AZURE_KEY>`	Conditional	Secure random string	All	Yes	Azure Translator Text API key (required if using Azure translator)
`credentials.translator.azure.TRANSLATOR_TEXT_ENDPOINT`	string	`<REPLACE_WITH_YOUR_AZURE_ENDPOINT>`	Conditional	Valid URL or domain name	All	Yes	Azure Translator Text endpoint (required if using Azure translator)
`credentials.translator.azure.TRANSLATOR_TEXT_LOCATION`	string	`<REPLACE_WITH_YOUR_AZURE_LOCATION>`	Conditional	User-provided value	All	Yes	Azure Translator Text resource location (required if using Azure translator)
`credentials.translator.aws.AWS_ACCESS_KEY_ID`	string	`<REPLACE_WITH_YOUR_AWS>`	Conditional	Secure random string	All	Yes	AWS access key for Translate service (required if using AWS translator)
`credentials.translator.aws.AWS_SECRET_ACCESS_KEY`	string	`<REPLACE_WITH_YOUR_AWS>`	Conditional	Secure random string	All	Yes	AWS secret key for Translate service (required if using AWS translator)

`credentials.rollbar`

Rollbar error monitoring credentials.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`credentials.rollbar.post_server_item_access_token`	string	`null`	Optional	Secure random string	All	Yes	Server-side Rollbar access token
`credentials.rollbar.post_client_item_access_token`	string	`null`	Optional	Secure random string	All	Yes	Client-side Rollbar access token

`credentials.hasura`

Hasura GraphQL engine credentials.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`credentials.hasura.HASURA_GRAPHQL_ADMIN_SECRET`	string	`REPLACE_WITH_YOUR_CREDENTIAL`	Required	Secure random string	All	Yes	Admin secret for Hasura GraphQL API

`credentials.boost`

Boost service API credentials and Azure OpenAI configurations.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`credentials.boost.JITERA_BOOST_API_KEY_MAIN`	string	`<REPLACE_WITH_YOUR_BOOST_API_KEY>`	Required	Secure random string	All	Yes	Main API key for Boost service (used for SWEF authentication). Generate with: `pwgen 32 1`
`credentials.boost.JITERA_BOOST_AUTO_API_KEY`	string	`<REPLACE_WITH_YOUR_HASURA_ADMIN_SECRET>`	Required	Secure random string	All	Yes	API key for Boost automation (should match Hasura admin secret)
`credentials.boost.JITERA_BOOST_OPENAI_KEY_LITELLM`	string	`<REPLACE_WITH_YOUR_LITELLM_API_KEY>`	Required	Secure random string	All	Yes	Master key for LiteLLM proxy authentication. Generate with: `pwgen 32 1`
`credentials.boost.JITERA_BOOST_ROLLBAR_ACCESS_TOKEN`	string	`<REPLACE_WITH_YOUR_ROLLBAR_TOKEN>`	Required	Secure random string	All	Yes	Rollbar access token for Boost service

Azure OpenAI Instance Configurations

The Boost service supports multiple Azure OpenAI instances for load balancing, redundancy, and geographic distribution. Format:

behavior=azure,url=https://jitera-xxx-.openai.azure.com/openai/deployments/MODEL_NAME,headers={"api-key": "YOUR_API_KEY"},query_params={"api-version": "2024-06-01"}

Why Multiple Instances?

Load balancing across instances to handle higher traffic
Redundancy - if one instance hits rate limits or fails, others can serve requests
Geographic distribution - different instances in different regions for better latency
Model availability - some models may only be available in specific instances/regions

Important: Variables must start with JITERA_BOOST_API_CONFIG_AZURE_ prefix. You can add as many instances as needed.

Instance 1

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`credentials.boost.JITERA_BOOST_API_CONFIG_AZURE_INSTANCE_1_ADA`	string	`<REPLACE_WITH_YOUR_AZURE_CONFIG>`	Required	User-provided value	All	Yes	Azure OpenAI text-embedding-ada-002 config for Instance 1
`credentials.boost.JITERA_BOOST_API_CONFIG_AZURE_INSTANCE_1_4O`	string	`<REPLACE_WITH_YOUR_AZURE_CONFIG>`	Required	User-provided value	All	Yes	Azure OpenAI GPT-4o config for Instance 1
`credentials.boost.JITERA_BOOST_API_CONFIG_AZURE_INSTANCE_1_4O_MINI`	string	`<REPLACE_WITH_YOUR_AZURE_CONFIG>`	Required	User-provided value	All	Yes	Azure OpenAI GPT-4o-mini config for Instance 1
`credentials.boost.JITERA_BOOST_API_CONFIG_AZURE_INSTANCE_1_41`	string	`<REPLACE_WITH_YOUR_AZURE_CONFIG>`	Required	User-provided value	All	Yes	Azure OpenAI GPT-4.1 config for Instance 1
`credentials.boost.JITERA_BOOST_API_CONFIG_AZURE_INSTANCE_1_41_MINI`	string	`<REPLACE_WITH_YOUR_AZURE_CONFIG>`	Required	User-provided value	All	Yes	Azure OpenAI GPT-4.1-mini config for Instance 1
`credentials.boost.JITERA_BOOST_API_CONFIG_AZURE_INSTANCE_1_41_NANO`	string	`<REPLACE_WITH_YOUR_AZURE_CONFIG>`	Required	User-provided value	All	Yes	Azure OpenAI GPT-4.1-nano config for Instance 1
`credentials.boost.JITERA_BOOST_API_CONFIG_AZURE_INSTANCE_1_O1`	string	`<REPLACE_WITH_YOUR_AZURE_CONFIG>`	Required	User-provided value	All	Yes	Azure OpenAI O1 config for Instance 1
`credentials.boost.JITERA_BOOST_API_CONFIG_AZURE_INSTANCE_1_O3`	string	`<REPLACE_WITH_YOUR_AZURE_CONFIG>`	Required	User-provided value	All	Yes	Azure OpenAI O3 config for Instance 1
`credentials.boost.JITERA_BOOST_API_CONFIG_AZURE_INSTANCE_1_O3_MINI`	string	`<REPLACE_WITH_YOUR_AZURE_CONFIG>`	Required	User-provided value	All	Yes	Azure OpenAI O3-mini config for Instance 1
`credentials.boost.JITERA_BOOST_API_CONFIG_AZURE_INSTANCE_1_O4_MINI`	string	`<REPLACE_WITH_YOUR_AZURE_CONFIG>`	Required	User-provided value	All	Yes	Azure OpenAI O4-mini config for Instance 1

Note: Instance 2 and GPT-5 configurations are commented out by default. Uncomment and configure as needed.

`credentials.vllm`

vLLM service credentials (currently not used).

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`credentials.vllm.HUGGING_FACE_HUB_TOKEN`	string	`REPLACE_WITH_YOUR_CREDENTIAL`	Required	Secure random string	All	Yes	Hugging Face Hub token (not currently used)

`credentials.html_conversion`

HTML conversion service authentication.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`credentials.html_conversion.BEARER_TOKEN`	string	`REPLACE_WITH_YOUR_BEARER_TOKEN`	Required	Secure random string	All	Yes	Bearer token for HTML conversion API. Generate with: `pwgen 32 1`

Audit Logs

`auditLogs`

Configuration for forwarding audit logs to external services.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`auditLogs.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable audit log forwarding

Azure Data Explorer Output

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`auditLogs.outputs.azureDataExplorer.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable Azure Data Explorer output
`auditLogs.outputs.azureDataExplorer.env.AZURE_TANANT_ID`	string	`<REPLACE_WITH_YOUR_AZURE>`	Required	User-provided value	All	Yes	Azure tenant ID
`auditLogs.outputs.azureDataExplorer.env.AZURE_INGESTION_ENDPOINT`	string	`<REPLACE_WITH_YOUR_AZURE>`	Required	Valid URL or domain name	All	Yes	Azure ingestion endpoint
`auditLogs.outputs.azureDataExplorer.env.AZURE_INGESTION_TABLE`	string	`<REPLACE_WITH_YOUR_AZURE>`	Required	User-provided value	All	Yes	Azure ingestion table name
`auditLogs.outputs.azureDataExplorer.env.AZURE_INGESTION_MAPPING_REFERENCE`	string	`<REPLACE_WITH_YOUR_AZURE>`	Required	User-provided value	All	Yes	Azure ingestion mapping reference
`auditLogs.outputs.azureDataExplorer.env.AZURE_DATA_EXPLORER_DB_NAME`	string	`<REPLACE_WITH_YOUR_AZURE>`	Required	String	All	Yes	Azure Data Explorer database name
`auditLogs.outputs.azureDataExplorer.env.AZURE_DATA_EXPLORER_CLIENT_ID`	string	`<REPLACE_WITH_YOUR_AZURE>`	Required	User-provided value	All	Yes	Azure Data Explorer client ID
`auditLogs.outputs.azureDataExplorer.env.AZURE_DATA_EXPLORER_CLIENT_SECRET`	string	`<REPLACE_WITH_YOUR_AZURE>`	Required	Secure random string	All	Yes	Azure Data Explorer client secret

Azure Blob Output

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`auditLogs.outputs.azureBlob.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable Azure Blob Storage output
`auditLogs.outputs.azureBlob.env.AZURE_STORAGE_ACCOUNT_NAME`	string	`<REPLACE_WITH_YOUR_AZURE>`	Required	String	All	Yes	Azure storage account name
`auditLogs.outputs.azureBlob.env.AZURE_BLOB_KEY`	string	`<REPLACE_WITH_YOUR_AZURE>`	Required	Secure random string	All	Yes	Azure Blob access key
`auditLogs.outputs.azureBlob.env.AZURE_BLOB_CONTAINER`	string	`<REPLACE_WITH_YOUR_AZURE>`	Required	Valid bucket/container name	All	Yes	Azure Blob container name

AWS S3 Output

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`auditLogs.outputs.awsS3.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable AWS S3 output
`auditLogs.outputs.awsS3.env.AWS_REGION`	string	`<REPLACE_WITH_YOUR_AWS>`	Required	Valid cloud region identifier	All	Yes	AWS region
`auditLogs.outputs.awsS3.env.AWS_BUCKET`	string	`<REPLACE_WITH_YOUR_AWS>`	Required	Valid bucket/container name	All	Yes	AWS S3 bucket name
`auditLogs.outputs.awsS3.env.AWS_ACCESS_KEY_ID`	string	`<REPLACE_WITH_YOUR_AWS>`	Required	Secure random string	All	Yes	AWS access key ID
`auditLogs.outputs.awsS3.env.AWS_SECRET_ACCESS_KEY`	string	`<REPLACE_WITH_YOUR_AWS>`	Required	Secure random string	All	Yes	AWS secret access key

Reference: FluentBit Output Configuration

OpenAI Configuration

`openai`

Configuration for AI/LLM services (OpenAI, Azure OpenAI, AWS Bedrock, Anthropic, Google).

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`openai.AI_MODE`	string	`open_ai`	Required	open_ai, azure	All	Optional	AI provider mode (options: `open_ai`, `azure`)

OpenAI Keys

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`openai.secretKeys.openai.OPENAI_API_KEYS`	string	`'["OPENAI_API_KEY_1", "OPENAI_API_KEY_2"]'`	Conditional	Secure random string	All	Conditional	JSON array of OpenAI API keys for load balancing
`openai.secretKeys.openai.OPENAI_API_KEY`	string	`<REPLACE_WITH_YOUR_OPENAI_API_KEY>`	Required	Secure random string	All	Yes	Primary OpenAI API key
`openai.secretKeys.openai.OPENAI_VISION_KEY`	string	`<REPLACE_WITH_YOUR_OPENAI_VISION_KEY>`	Required	Secure random string	All	Yes	OpenAI Vision API key
`openai.secretKeys.openai.OPENAI_EMBEDDING_KEY`	string	`<REPLACE_WITH_YOUR_OPENAI_EMBEDDING_KEY>`	Required	Secure random string	All	Yes	OpenAI Embeddings API key
`openai.secretKeys.openai.OPENAI_MAIN_MODEL_NAME`	string	`<REPLACE_WITH_YOUR_MODEL_NAME>`	Required	Secure random string	All	Yes	Main OpenAI model name

Azure OpenAI Keys

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`openai.secretKeys.azure.AZURE_OPENAI_KEY`	string	`<REPLACE_WITH_YOUR_AZURE_OPENAI_KEY>`	Required	Secure random string	All	Yes	Primary Azure OpenAI key
`openai.secretKeys.azure.AZURE_OPENAI_KEYS`	string	`'["AZURE_OPENAI_KEYS_1", "AZURE_OPENAI_KEYS_2"]'`	Conditional	Secure random string	All	Conditional	JSON array of Azure OpenAI keys
`openai.secretKeys.azure.AZURE_OPENAI_INSTANCE_NAME`	string	`<REPLACE_WITH_YOUR_AZURE_OPENAI_INSTANCE_NAME>`	Required	Secure random string	All	Yes	Primary Azure OpenAI instance name
`openai.secretKeys.azure.AZURE_OPENAI_INSTANCE_NAMES`	string	`'["AZURE_OPENAI_INSTANCE_NAME_1", "AZURE_OPENAI_INSTANCE_NAME_2"]'`	Conditional	Secure random string	All	Conditional	JSON array of Azure OpenAI instance names
`openai.secretKeys.azure.AZURE_OPENAI_VERSION`	string	`2024-10-21`	Conditional	Secure random string	All	Conditional	Azure OpenAI API version
`openai.secretKeys.azure.AZURE_OPENAI_DEVELOPMENT_NAME`	string	`gpt-4-turbo`	Conditional	Secure random string	All	Conditional	Development model deployment name
`openai.secretKeys.azure.AZURE_OPENAI_EMBEDDING_DEVELOPMENT_NAME`	string	`text-embedding-ada-002`	Conditional	Secure random string	All	Conditional	Embedding model deployment name
`openai.secretKeys.azure.AZURE_OPENAI_VISION_DEVELOPMENT_NAME`	string	`gpt-4o`	Conditional	Secure random string	All	Conditional	Vision model deployment name
`openai.secretKeys.azure.AZURE_OPENAI_GPT_4O_DEVELOPMENT_NAME`	string	`gpt-4o`	Conditional	Secure random string	All	Conditional	GPT-4o deployment name
`openai.secretKeys.azure.AZURE_OPENAI_GPT_4O_MINI_DEVELOPMENT_NAME`	string	`gpt-4o-mini`	Conditional	Secure random string	All	Conditional	GPT-4o-mini deployment name
`openai.secretKeys.azure.AZURE_OPENAI_GPT_35_INSTRUCT_DEVELOPMENT_NAME`	string	`gpt-4o-mini`	Conditional	Secure random string	All	Conditional	GPT-3.5 Instruct deployment name

Azure OpenAI Global Instances (AI Agent)

For regions that don’t support certain models (e.g., Japan region).

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`openai.secretKeys.azure.AZURE_OPENAI_GLOBAL_KEYS`	string	`'["AZURE_OPENAI_KEYS_1", "AZURE_OPENAI_KEYS_2"]'`	Conditional	Secure random string	All	Conditional	JSON array of global Azure OpenAI keys
`openai.secretKeys.azure.AZURE_OPENAI_GLOBAL_INSTANCE_NAMES`	string	`'["AZURE_OPENAI_INSTANCE_NAME_1", "AZURE_OPENAI_INSTANCE_NAME_2"]'`	Conditional	Secure random string	All	Conditional	JSON array of global instance names
`openai.secretKeys.azure.AZURE_OPENAI_GLOBAL_VERSION`	string	`2024-12-01-preview`	Conditional	Secure random string	All	Conditional	Global Azure OpenAI API version
`openai.secretKeys.azure.AZURE_OPENAI_GPT_O1_DEVELOPMENT_NAME`	string	`o1`	Conditional	Secure random string	All	Conditional	O1 model deployment name
`openai.secretKeys.azure.AZURE_OPENAI_GPT_O1_MINI_DEVELOPMENT_NAME`	string	`o1-mini`	Conditional	Secure random string	All	Conditional	O1-mini model deployment name
`openai.secretKeys.azure.AZURE_OPENAI_GPT_O3_MINI_DEVELOPMENT_NAME`	string	`o3-mini`	Conditional	Secure random string	All	Conditional	O3-mini model deployment name
`openai.secretKeys.azure.AZURE_DEVELOPMENT_NAME_O3`	string	`o3`	Conditional	Secure random string	All	Conditional	O3 model deployment name
`openai.secretKeys.azure.AZURE_DEVELOPMENT_NAME_GPT_41`	string	`gpt-4.1`	Conditional	Secure random string	All	Conditional	GPT-4.1 model deployment name

GPT-5 Models (US and Sweden regions only)

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`openai.secretKeys.azure.AZURE_OPENAI_GPT_5_DEVELOPMENT_NAME`	string	`gpt-5`	Conditional	Secure random string	All	Conditional	GPT-5 model deployment name
`openai.secretKeys.azure.AZURE_OPENAI_GPT_5_MINI_DEVELOPMENT_NAME`	string	`gpt-5-mini`	Conditional	Secure random string	All	Conditional	GPT-5-mini model deployment name
`openai.secretKeys.azure.AZURE_OPENAI_GPT_5_NANO_DEVELOPMENT_NAME`	string	`gpt-5-nano`	Conditional	Secure random string	All	Conditional	GPT-5-nano model deployment name
`openai.secretKeys.azure.AZURE_OPENAI_GPT_5_CHAT_DEVELOPMENT_NAME`	string	`gpt-5-chat`	Conditional	Secure random string	All	Conditional	GPT-5-chat model deployment name
`openai.secretKeys.azure.AZURE_OPENAI_GPT_51_DEVELOPMENT_NAME`	string	`gpt-5.1`	Conditional	Secure random string	All	Conditional	GPT-5.1 model deployment name
`openai.secretKeys.azure.AZURE_OPENAI_GPT_52_DEVELOPMENT_NAME`	string	`gpt-5.2`	Conditional	Secure random string	All	Conditional	GPT-5.2 model deployment name

AWS Bedrock (AI Agent)

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`openai.secretKeys.bedrock.BEDROCK_CONVERSE_REGION`	string	`ap-northeast-1`	Conditional	Secure random string	All	Conditional	Primary AWS region for Bedrock
`openai.secretKeys.bedrock.BEDROCK_CONVERSE_ACCESS_KEY_ID`	string	`<REPLACE_WITH_YOUR_AWS_ACCESS_KEY_ID>`	Required	Secure random string	All	Yes	AWS access key ID for Bedrock
`openai.secretKeys.bedrock.BEDROCK_CONVERSE_SECRET_ACCESS_KEY`	string	`<REPLACE_WITH_YOUR_AWS_SECRET_ACCESS_KEY>`	Required	Secure random string	All	Yes	AWS secret access key for Bedrock
`openai.secretKeys.bedrock.BEDROCK_CONVERSE_GLOBAL_REGION`	string	`us-east-1`	Conditional	Secure random string	All	Conditional	Secondary AWS region for Bedrock
`openai.secretKeys.bedrock.BEDROCK_CONVERSE_GLOBAL_ACCESS_KEY_ID`	string	`<REPLACE_WITH_YOUR_AWS_ACCESS_KEY_ID>`	Required	Secure random string	All	Yes	AWS access key ID for global region
`openai.secretKeys.bedrock.BEDROCK_CONVERSE_GLOBAL_SECRET_ACCESS_KEY`	string	`<REPLACE_WITH_YOUR_AWS_SECRET_ACCESS_KEY>`	Required	Secure random string	All	Yes	AWS secret access key for global region

Anthropic (AI Agent)

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`openai.secretKeys.anthropic.ANTHROPIC_API_KEY`	string	`<REPLACE_WITH_YOUR_ANTHROPIC_API_KEY>`	Required	Secure random string	All	Yes	Anthropic API key

Google AI (AI Agent)

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`openai.secretKeys.google.GOOGLE_GENERATIVE_API_KEY`	string	`<REPLACE_WITH_YOUR_GOGLLE_API_KEY>`	Required	Secure random string	All	Yes	Google Generative AI API key

Ingress Configuration

`ingress`

Ingress configuration for exposing services externally.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`ingress.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable ingress
`ingress.domainName`	string	`<REPLACE_WITH_YOUR_DOMAIN>`	Required	Valid URL or domain name	All	Yes	Main domain name (e.g., `app.jitera.local`)
`ingress.chatDomainName`	string	`<REPLACE_WITH_YOUR_DOMAIN>`	Required	Valid URL or domain name	All	Yes	Chat domain name (e.g., `chat.jitera.local`)
`ingress.className`	string	`kong`	Optional	String	All	Optional	Ingress class name

MinIO Ingress

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`ingress.minio.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable MinIO API ingress
`ingress.minio.domainName`	string	`<REPLACE_WITH_YOUR_DOMAIN>`	Required	Valid URL or domain name	All	Yes	MinIO API domain (e.g., `minio.jitera.local`)
`ingress.minio.annotations`	object	`{}`	Optional	Key-value pairs	All	Optional	Additional MinIO-specific annotations
`ingress.minio.tls`	array	`[]`	Optional	Array/list	All	Optional	MinIO-specific TLS configuration
`ingress.minio.console.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable MinIO Console UI ingress
`ingress.minio.console.domainName`	string	`<REPLACE_WITH_YOUR_DOMAIN>`	Required	Valid URL or domain name	All	Yes	MinIO Console domain (e.g., `minio-console.jitera.local`)
`ingress.minio.console.annotations`	object	`{}`	Optional	Key-value pairs	All	Optional	Additional Console-specific annotations
`ingress.minio.console.tls`	array	`[]`	Optional	Array/list	All	Optional	Console-specific TLS configuration

Ingress Annotations

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`ingress.annotations."konghq.com/connect-timeout"`	string	`"180000"`	Optional	Milliseconds	All	Optional	Connection timeout in milliseconds
`ingress.annotations."konghq.com/read-timeout"`	string	`"180000"`	Optional	Milliseconds	All	Optional	Read timeout in milliseconds
`ingress.annotations."konghq.com/write-timeout"`	string	`"180000"`	Optional	Milliseconds	All	Optional	Write timeout in milliseconds
`ingress.annotations."konghq.com/strip-path"`	string	`"true"`	Optional	String	All	Optional	Strip path before forwarding

Note: For cert-manager SSL, uncomment the cert-manager annotations in the values file.

TLS Configuration

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`ingress.tls`	array	`[]`	Optional	Array/list	All	Optional	TLS configuration (see values file for example)

Monitoring Ingress

Grafana

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`ingress.grafana.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Grafana ingress
`ingress.grafana.type`	string	`subdomain`	Optional	`subdomain`, `path`	All	Optional	Ingress type: `subdomain` or `path`
`ingress.grafana.domain`	string	`grafana.<your-domain>`	Optional	Valid URL or domain name	All	Optional	Grafana domain (when type is `subdomain`)
`ingress.grafana.pathPrefix`	string	`/grafana`	Optional	String	All	Optional	Path prefix (when type is `path`)

Prometheus

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`ingress.prometheus.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Prometheus ingress
`ingress.prometheus.type`	string	`subdomain`	Optional	`subdomain`, `path`	All	Optional	Ingress type: `subdomain` or `path`
`ingress.prometheus.domain`	string	`prometheus.<your-domain>`	Optional	Valid URL or domain name	All	Optional	Prometheus domain (when type is `subdomain`)
`ingress.prometheus.pathPrefix`	string	`/prometheus`	Optional	String	All	Optional	Path prefix (when type is `path`)

Storage Configuration

`storage`

Storage backend configuration for file uploads and assets.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`storage.provider`	string	`S3`	Required	S3, AzureStorage, Minio	All	Yes	Storage provider (options: `S3`, `AzureStorage`, `Minio`)

MinIO Storage Configuration

Used when storage.provider is Minio.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`storage.secret.minio.AWS_ACCESS_KEY_ID`	string	`<REPLACE_WITH_YOUR_MINIO_ACESS_KEY>`	Required	Secure random string	All	Yes	MinIO access key. Generate with: `pwgen 20 1`
`storage.secret.minio.AWS_SECRET_ACCESS_KEY`	string	`<REPLACE_WITH_YOUR_MINIO_SECRET_KEY>`	Required	Secure random string	All	Yes	MinIO secret key. Generate with: `pwgen 40 1`
`storage.secret.minio.AWS_REGION`	string	`us-east-1`	Conditional	Secure random string	All	Optional	MinIO region (fixed)
`storage.secret.minio.AWS_BUCKET`	string	`<REPLACE_WITH_YOUR_BUCKET_NAME>`	Required	Secure random string	All	Yes	Default bucket for automation service
`storage.secret.minio.AWS_PUBLIC_BUCKET`	string	`<REPLACE_WITH_YOUR_BUCKET_NAME>`	Required	Secure random string	All	Yes	Public bucket
`storage.secret.minio.AWS_EXPORT_PROJECT_BUCKET`	string	`<REPLACE_WITH_YOUR_BUCKET_NAME>`	Required	Valid bucket/container name	All	Yes	Export projects bucket
`storage.secret.minio.AWS_ULTRON_BUCKET`	string	`<REPLACE_WITH_YOUR_BUCKET_NAME>`	Required	Secure random string	All	Yes	Ultron service bucket
`storage.secret.minio.S3_FORCE_PATH_STYLE`	string	`"true"`	Conditional	`true`, `false`	All	Optional	Force path-style URLs (required for MinIO)

Note: S3_ENDPOINT is dynamically generated from ingress.minio.domainName.

AWS S3 Storage Configuration

Used when storage.provider is S3.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`storage.secret.aws.AWS_ACCESS_KEY_ID`	string	`<REPLACE_WITH_YOUR_AWS_ACCESS_KEY_ID>`	Required	Secure random string	All	Yes	AWS access key ID
`storage.secret.aws.AWS_SECRET_ACCESS_KEY`	string	`<REPLACE_WITH_YOUR_AWS_SECRET_ACCESS_KEY>`	Required	Secure random string	All	Yes	AWS secret access key
`storage.secret.aws.AWS_REGION`	string	`<REPLACE_WITH_YOUR_AWS_REGION>`	Required	`ap-northeast-1` 必須	All	Yes	AWSリージョン。`ap-northeast-1` 必須 — アプリケーションは署名付きURLを東京リージョンでハードコードして生成します。S3バケットも `ap-northeast-1` に作成する必要があります。
`storage.secret.aws.AWS_BUCKET`	string	`<REPLACE_WITH_YOUR_BUCKET_NAME>`	Required	Valid bucket/container name	All	Yes	Default S3 bucket
`storage.secret.aws.AWS_PUBLIC_BUCKET`	string	`<REPLACE_WITH_YOUR_BUCKET_NAME>`	Required	Valid bucket/container name	All	Yes	Public S3 bucket
`storage.secret.aws.AWS_EXPORT_PROJECT_BUCKET`	string	`<REPLACE_WITH_YOUR_BUCKET_NAME>`	Required	Valid bucket/container name	All	Yes	Export projects bucket
`storage.secret.aws.AWS_ULTRON_BUCKET`	string	`<REPLACE_WITH_YOUR_BUCKET_NAME>`	Required	Valid bucket/container name	All	Yes	Ultron service bucket

Azure Storage Configuration

Used when storage.provider is AzureStorage.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`storage.secret.azure.STORAGE_ACCOUNT_NAME`	string	`STORAGE_ACCOUNT_NAME`	Conditional	Secure random string	All	Optional	Azure storage account name
`storage.secret.azure.STORAGE_ACCESS_KEY`	string	`STORAGE_ACCESS_KEY`	Conditional	Secure random string	All	Optional	Azure storage access key
`storage.secret.azure.CONTAINER`	string	`<REPLACE_WITH_YOUR_CONTAINER_NAME>`	Required	Secure random string	All	Yes	Default blob container
`storage.secret.azure.ULTRON_CONTAINER`	string	`<REPLACE_WITH_YOUR_CONTAINER_NAME>`	Required	Secure random string	All	Yes	Ultron blob container
`storage.secret.azure.EXPORT_PROJECT_CONTAINER`	string	`<REPLACE_WITH_YOUR_CONTAINER_NAME>`	Required	Valid port number (1-65535)	All	Yes	Export projects container
`storage.secret.azure.PUBLIC_CONTAINER`	string	`<REPLACE_WITH_YOUR_CONTAINER_NAME>`	Required	Secure random string	All	Yes	Public blob container

Company Settings

`company`

Company-specific configuration.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`company.domain`	string	`<REPLACE_WITH_YOUR_COMPANY_DOMAIN_EMAIL>`	Required	Valid URL or domain name	All	Yes	Company email domain (e.g., `@domain.com`)
`company.name`	string	`<REPLACE_WITH_YOUR_COMPANY_NAME>`	Required	String	All	Yes	Company name
`company.brand_name`	string	`<REPLACE_WITH_YOUR_COMPANY_BRAND_NAME>`	Required	String	All	Yes	Company brand name
`company.language`	string	`ja`	Required	ja, en	All	Yes	Default language for email notifications (options: `ja`, `en`)
`company.pages.terms_of_service_url`	string	`<REPLACE_WITH_YOUR_COMPANY_TERMS_OF_SERVICE_URL>`	Required	Valid URL or domain name	All	Yes	Terms of service URL
`company.pages.privacy_policy_url`	string	`<REPLACE_WITH_YOUR_COMPANY_PRIVACY_POLICY_URL>`	Required	Valid URL or domain name	All	Yes	Privacy policy URL

Email Configuration

`mailer`

SMTP configuration for sending emails.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`mailer.smtp_settings.address`	string	`<REPLACE_WITH_YOUR_SMTP_HOST>`	Required	User-provided value	All	Yes	SMTP server address
`mailer.smtp_settings.user_name`	string	`<REPLACE_WITH_YOUR_SMTP_USER>`	Required	String	All	Yes	SMTP username
`mailer.smtp_settings.password`	string	`<REPLACE_WITH_YOUR_SMTP_PASSWORD>`	Required	Secure random string	All	Yes	SMTP password
`mailer.default_from_email`	string	`<REPLACE_WITH_YOUR_SMTP_SENDER>`	Required	Valid email address	All	Yes	Default sender email address

Supported Providers: Azure Communication Service, Sendgrid, AWS SES, Self-hosted SMTP For self-hosted SMTP: When smtp.enabled is true, use jitera-smtp.default.svc.cluster.local as the address.

Self-hosted SMTP Server

`smtp`

Optional self-hosted Postfix SMTP server for sending emails.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`smtp.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable self-hosted SMTP server
`smtp.nameOverride`	string	`""`	Optional	String	All	No	Name override
`smtp.fullnameOverride`	string	`""`	Optional	String	All	No	Full name override
`smtp.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`smtp.image.repository`	string	`boky/postfix`	Optional	Valid image repository URL	All	No	Postfix image repository
`smtp.image.tag`	string	`v3.7.0`	Optional	Valid image tag	All	No	Postfix image tag
`smtp.image.pullPolicy`	string	`IfNotPresent`	Optional	`Always`, `IfNotPresent`, `Never`	All	Optional	Image pull policy

SMTP Configuration

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`smtp.config.hostname`	string	`<REPLACE_WITH_YOUR_DOMAIN>`	Required	String	All	Yes	SMTP server hostname
`smtp.config.allowedNetworks`	string	`10.0.0.0/8,172.16.0.0/12,192.168.0.0/16`	Optional	String	All	No	Allowed networks (K8s internal by default)
`smtp.config.messageSizeLimit`	string	`52428800`	Optional	String	All	Optional	Message size limit in bytes (default: 50MB)

SMTP Authentication

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`smtp.auth.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable SMTP authentication
`smtp.auth.users[0].username`	string	`jitera`	Optional	String	All	Optional	SMTP username
`smtp.auth.users[0].password`	string	`<REPLACE_WITH_SMTP_PASSWORD>`	Required	Secure random string	All	Yes	SMTP password

SMTP Service

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`smtp.service.type`	string	`ClusterIP`	Optional	`ClusterIP`, `LoadBalancer`, `NodePort`	All	Optional	Kubernetes service type
`smtp.service.port`	number	`25`	Optional	Valid port number (1-65535)	All	Optional	Service port
`smtp.service.targetPort`	number	`587`	Optional	Valid port number (1-65535)	All	Optional	Container target port

SMTP Resources

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`smtp.resources.requests.memory`	string	`256Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`smtp.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`smtp.resources.limits.memory`	string	`512Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`smtp.resources.limits.cpu`	string	`500m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit

Microservices

Frontend

Web application frontend service.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`frontend.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable frontend service
`frontend.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`frontend.nameOverride`	string	`""`	Optional	String	All	No	Name override
`frontend.fullnameOverride`	string	`""`	Optional	String	All	No	Full name override
`frontend.resources.requests.memory`	string	`128Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`frontend.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`frontend.resources.limits.memory`	string	`2048Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`frontend.resources.limits.cpu`	string	`10000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit
`frontend.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`frontend.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations
`frontend.affinity`	object	`{}`	Optional	Key-value pairs	All	Optional	Affinity rules
`frontend.serviceAccount.create`	boolean	`true`	Optional	`true`, `false`	All	No	Create service account
`frontend.serviceAccount.name`	string	`""`	Optional	String	All	No	Service account name
`frontend.serviceAccount.annotations`	string	`""`	Optional	String	All	No	Service account annotations

Frontend Environment Variables

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`frontend.env.REACT_APP_PROJECT_ENV`	string	`production`	Optional	String	All	Optional	React app environment
`frontend.env.ROLLBAR_ENV`	string	`production`	Optional	e.g. `production`, `staging`	All	Optional	Rollbar environment label (free-form string used to group errors in the Rollbar dashboard)
`frontend.env.REACT_APP_CLIENT_ID`	string	`PLACEHOLDER_VALUE`	Required	String	All	No	OAuth client ID
`frontend.env.REACT_APP_CLIENT_SECRET`	string	`PLACEHOLDER_VALUE`	Required	Secure random string	All	No	OAuth client secret
`frontend.env.REACT_APP_RECAPTCHA_SITE_KEY`	string	`PLACEHOLDER_VALUE`	Required	Secure random string	All	Optional	reCAPTCHA site key
`frontend.env.FONTAWESOME_NPM_AUTH_TOKEN`	string	`PLACEHOLDER_VALUE`	Required	Secure random string	All	Optional	Font Awesome NPM token
`frontend.env.REACT_APP_BROADCASTER_WS_URL`	string	`PLACEHOLDER_VALUE`	Optional	Valid URL or domain name	All	Optional	WebSocket broadcaster URL
`frontend.env.REACT_APP_PLAYWRIGHT_TRACING_VIEWER_URL`	string	`https://jitera-trace-viewer.pages.dev/`	Optional	Valid URL or domain name	All	Optional	Playwright tracing viewer URL
`frontend.env.REACT_APP_SECURED_SIGN_UP`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable secured sign-up

SWEF

SWEF (Software Engineering Framework) service.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`swef.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable SWEF service
`swef.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`swef.nameOverride`	string	`""`	Optional	String	All	No	Name override
`swef.fullnameOverride`	string	`""`	Optional	String	All	No	Full name override
`swef.resources.requests.memory`	string	`128Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`swef.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`swef.resources.limits.memory`	string	`2048Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`swef.resources.limits.cpu`	string	`10000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit
`swef.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`swef.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations
`swef.affinity`	object	`{}`	Optional	Key-value pairs	All	Optional	Affinity rules
`swef.serviceAccount.create`	boolean	`true`	Optional	`true`, `false`	All	No	Create service account
`swef.serviceAccount.name`	string	`""`	Optional	String	All	No	Service account name
`swef.serviceAccount.annotations`	string	`""`	Optional	String	All	No	Service account annotations

SWEF Environment Variables

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`swef.env.CODEGEN_TOKEN`	string	`token`	Optional	Secure random string	All	Optional	Code generation token
`swef.env.VITE_ENABLE_SIMPLE_AUTH`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable simple authentication

Automation

Rails-based automation service with multiple sub-services.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`automation.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable automation service

Rails Service

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`automation.services.rails.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Rails service
`automation.services.rails.nameOverride`	string	`rails`	Optional	String	All	No	Name override
`automation.services.rails.command`	array	`["bundle", "exec", "rails", "server", "-b", "0.0.0.0", "-p", "3000"]`	Optional	Array/list	All	No	Container command
`automation.services.rails.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`automation.services.rails.resources.requests.memory`	string	`2048Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`automation.services.rails.resources.requests.cpu`	string	`500m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`automation.services.rails.resources.limits.memory`	string	`4096Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`automation.services.rails.resources.limits.cpu`	string	`2000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit
`automation.services.rails.livenessProbe.httpGet.path`	string	`/health`	Optional	String	All	No	Liveness probe path
`automation.services.rails.livenessProbe.httpGet.port`	number	`3000`	Optional	Valid port number (1-65535)	All	No	Liveness probe port
`automation.services.rails.readinessProbe.httpGet.path`	string	`/health`	Optional	String	All	No	Readiness probe path
`automation.services.rails.readinessProbe.httpGet.port`	number	`3000`	Optional	Valid port number (1-65535)	All	No	Readiness probe port
`automation.services.rails.lifeCycle.preStop.exec.command`	array	`["sleep", "15"]`	Optional	Array/list	All	No	Pre-stop command

Sidekiq Service

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`automation.services.sidekiq.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Sidekiq background jobs
`automation.services.sidekiq.nameOverride`	string	`sidekiq`	Optional	String	All	No	Name override
`automation.services.sidekiq.command`	array	`["bundle", "exec", "sidekiq"]`	Optional	Array/list	All	No	Container command
`automation.services.sidekiq.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`automation.services.sidekiq.resources.requests.memory`	string	`1500Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`automation.services.sidekiq.resources.requests.cpu`	string	`200m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`automation.services.sidekiq.resources.limits.memory`	string	`4096Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`automation.services.sidekiq.resources.limits.cpu`	string	`2000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit

Sidekiq Priority Service

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`automation.services.sidekiq-priority.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable priority Sidekiq workers
`automation.services.sidekiq-priority.nameOverride`	string	`sidekiq-priority`	Optional	String	All	No	Name override
`automation.services.sidekiq-priority.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`automation.services.sidekiq-priority.command`	array	`["bundle", "exec", "sidekiq", "-C", "config/sidekiq_priority.yml"]`	Optional	Array/list	All	No	Container command
`automation.services.sidekiq-priority.resources.requests.memory`	string	`1500Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`automation.services.sidekiq-priority.resources.requests.cpu`	string	`200m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`automation.services.sidekiq-priority.resources.limits.memory`	string	`4096Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`automation.services.sidekiq-priority.resources.limits.cpu`	string	`2000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit

RPC Service

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`automation.services.rpc.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable RPC service
`automation.services.rpc.nameOverride`	string	`rpc`	Optional	String	All	No	Name override
`automation.services.rpc.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`automation.services.rpc.command`	array	`["ruby", "rpc.rb"]`	Optional	Array/list	All	No	Container command
`automation.services.rpc.resources.requests.memory`	string	`1024Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`automation.services.rpc.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`automation.services.rpc.resources.limits.memory`	string	`2048Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`automation.services.rpc.resources.limits.cpu`	string	`1000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit

Identifier Service

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`automation.services.identifier.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable identifier service
`automation.services.identifier.name`	string	`identifier`	Optional	String	All	Optional	Service name
`automation.services.identifier.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas

Automation Environment Variables

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`automation.env.TZ`	string	`Asia/Tokyo`	Optional	String	All	Optional	Timezone
`automation.env.NODE_ENV`	string	`production`	Optional	String	All	Optional	Node environment
`automation.env.RAILS_ENV`	string	`production`	Optional	String	All	Optional	Rails environment
`automation.env.RAILS_MAX_THREADS`	string	`"15"`	Optional	String	All	Optional	Maximum Rails threads
`automation.env.PUBLIC_OPEN_AI_INTERNAL_SECRET`	string	`random_secret`	Optional	Secure random string	All	Optional	Internal OpenAI secret (must match ultron)
`automation.env.ENABLE_SELF_HOSTING`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable self-hosting mode
`automation.env.SECURED_SIGN_UP`	boolean	`false`	Optional	`true`, `false`	All	Optional	Require invitation for sign-up
`automation.env.OTEL_ENABLED`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable OpenTelemetry
`automation.env.ENABLE_PROXY_FROM_X_HEADER`	boolean	`false`	Optional	`true`, `false`	All	Optional	Trust X-Forwarded-For header
`automation.env.DYNAMIC_DOCUMENT_GENERATION_LIMITATION`	string	`""`	Optional	Empty string or integer	All	Optional	Monthly per-company quota for Dynamic Document generation runs. Empty = unlimited; integer = cap

Note: Row-level security DB migration settings (DB_MIGRATE_USERNAME, DB_MIGRATE_PASSWORD) are commented out by default.

Automation Pod Configuration

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`automation.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`automation.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations
`automation.affinity`	object	`{}`	Optional	Key-value pairs	All	Optional	Affinity rules
`automation.serviceAccount.create`	boolean	`true`	Optional	`true`, `false`	All	No	Create service account
`automation.serviceAccount.name`	string	`""`	Optional	String	All	No	Service account name
`automation.serviceAccount.annotations`	string	`""`	Optional	String	All	No	Service account annotations

Ultron

AI agent orchestration service.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`ultron.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Ultron service
`ultron.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`ultron.command`	array	`["yarn", "--cwd", "apps/ultron", "start"]`	Optional	Array/list	All	No	Container command
`ultron.nameOverride`	string	`""`	Optional	String	All	No	Name override
`ultron.fullnameOverride`	string	`""`	Optional	String	All	No	Full name override
`ultron.resources.requests.memory`	string	`1024Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`ultron.resources.requests.cpu`	string	`500m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`ultron.lifeCycle.preStop.exec.command`	array	`["curl", "-v", "http://localhost:3000/stop-all-consumer"]`	Optional	Array/list	All	No	Pre-stop command
`ultron.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`ultron.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations
`ultron.affinity`	object	`{}`	Optional	Key-value pairs	All	Optional	Affinity rules
`ultron.terminationGracePeriodSeconds`	number	`1800`	Optional	Number	All	Optional	Termination grace period (30 minutes)
`ultron.serviceAccount.create`	boolean	`true`	Optional	`true`, `false`	All	No	Create service account
`ultron.serviceAccount.name`	string	`""`	Optional	String	All	No	Service account name
`ultron.serviceAccount.annotations`	string	`""`	Optional	String	All	No	Service account annotations

Ultron Environment Variables

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`ultron.env.ENV`	string	`production`	Optional	`production`, `development`, `staging`	All	Optional	Environment
`ultron.env.ROLLBAR_ENVIRONMENT`	string	`production`	Optional	e.g. `production`, `staging`	All	Optional	Rollbar environment label (free-form string used to group errors in the Rollbar dashboard)
`ultron.env.APP_PUBLIC_PORT`	number	`3001`	Optional	Valid port number (1-65535)	All	Optional	Public port
`ultron.env.APP_PORT`	number	`3000`	Optional	Valid port number (1-65535)	All	Optional	Internal port
`ultron.env.STORAGE_DISK`	string	`s3`	Optional	s3, azure, minio	All	Optional	Storage backend (options: `s3`, `azure`, `minio`)
`ultron.env.VECTOR_SERVICE`	string	`pgvector`	Optional	`pgvector`	All	Optional	Vector database service
`ultron.env.MAXIMUM_CODE_DOCUMENT_LENGTH`	number	`2500`	Optional	Number	All	Optional	Maximum code document length
`ultron.env.ENABLE_UI_SEPARATOR_TOOL`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable UI separator tool
`ultron.env.DELEGATE_MODE`	string	`""`	Optional	String	All	Optional	Delegate mode
`ultron.env.GENERIC_ERD_DOCUMENT_LIMIT`	number	`7`	Optional	Number	All	Optional	Generic ERD document limit
`ultron.env.GENERIC_ERD_DOCUMENT_PER_RUN`	number	`7`	Optional	Number	All	Optional	Generic ERD documents per run
`ultron.env.ENABLE_DEVELOPER_AGENT_FOR_LARGE_FILE`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable developer agent for large files
`ultron.env.ENABLE_LEGACY_AGENT`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable legacy agent
`ultron.env.OTEL_ENABLED`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable OpenTelemetry

Ultron Secrets

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`ultron.secret.PUBLIC_OPEN_AI_INTERNAL_SECRET`	string	`random_secret`	Optional	Secure random string	All	Optional	Internal OpenAI secret (must match automation)
`ultron.secret.CLI_ZIPPER_PRIVATE_KEY`	string	`-----BEGIN RSA PRIVATE KEY-----\n\n-----END RSA PRIVATE KEY-----`	Optional	Secure random string	All	Optional	CLI zipper RSA private key

Document Converter

Document conversion service (Python-based).

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`document_converter.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable document converter service
`document_converter.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`document_converter.command`	array	`["uvicorn", "server:app", "--host", "0.0.0.0", "--port", "8000"]`	Optional	Array/list	All	No	Container command
`document_converter.nameOverride`	string	`""`	Optional	String	All	No	Name override
`document_converter.fullnameOverride`	string	`""`	Optional	String	All	No	Full name override
`document_converter.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`document_converter.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations
`document_converter.affinity`	object	`{}`	Optional	Key-value pairs	All	Optional	Affinity rules
`document_converter.resources.requests.memory`	string	`2048Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`document_converter.resources.requests.cpu`	string	`1024m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`document_converter.serviceAccount.create`	boolean	`true`	Optional	`true`, `false`	All	No	Create service account
`document_converter.serviceAccount.name`	string	`""`	Optional	String	All	No	Service account name
`document_converter.serviceAccount.annotations`	string	`""`	Optional	String	All	No	Service account annotations

Document Converter Environment Variables

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`document_converter.env.ENVIRONMENT`	string	`production`	Optional	`production`, `development`, `staging`	All	Optional	Environment
`document_converter.env.LOCAL_SERVER`	string	`http://127.0.0.1:8000`	Optional	String	All	Optional	Local server URL
`document_converter.env.USE_AZURE`	boolean	`true`	Optional	`true`, `false`	All	Optional	Use Azure storage (if false, uses AWS S3)
`document_converter.env.USE_BASE_64`	boolean	`true`	Optional	`true`, `false`	All	Optional	Use base64 encoding for file upload

vLLM

Code auto-completion service (requires GPU). Reference: vLLM Project Documentation

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`vllm.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable vLLM service (requires GPU nodes)
`vllm.nameOverride`	string	`""`	Optional	String	All	No	Name override
`vllm.fullnameOverride`	string	`""`	Optional	String	All	No	Full name override
`vllm.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`vllm.args`	array	`["vllm serve Qwen/Qwen2.5-Coder-1.5B-Instruct-AWQ --trust-remote-code --enable-prefix-caching --disable-log-requests --dtype=float16"]`	Optional	Array/list	All	No	vLLM arguments
`vllm.env.VLLM_PORT`	string	`"8000"`	Optional	Valid port number (1-65535)	All	Optional	vLLM port
`vllm.env.VLLM_DO_NOT_TRACK`	string	`"1"`	Optional	String	All	Optional	Disable telemetry
`vllm.resources.requests.memory`	string	`4Gi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`vllm.resources.requests.cpu`	string	`2000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`vllm.resources.limits.memory`	string	`32Gi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`vllm.resources.limits.cpu`	string	`8000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit
`vllm.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector (use to select GPU nodes)
`vllm.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations
`vllm.affinity`	object	`{}`	Optional	Key-value pairs	All	Optional	Affinity rules

LiteLLM

LLM proxy and gateway service.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`litellm.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable LiteLLM service
`litellm.nameOverride`	string	`""`	Optional	String	All	No	Name override
`litellm.fullnameOverride`	string	`""`	Optional	String	All	No	Full name override
`litellm.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`litellm.resources.requests.memory`	string	`512Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`litellm.resources.requests.cpu`	string	`250m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`litellm.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`litellm.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations
`litellm.affinity`	object	`{}`	Optional	Key-value pairs	All	Optional	Affinity rules

Note: Proxy configuration is loaded from extra_config/litellm-proxy-config.yaml.

Boost

Boost AI service.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`boost.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Boost service
`boost.nameOverride`	string	`""`	Optional	String	All	No	Name override
`boost.fullnameOverride`	string	`""`	Optional	String	All	No	Full name override
`boost.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`boost.command`	array	`["uv", "run", "uvicorn", "main:app", "--host", "0.0.0.0", "--port", "8000", "--reload"]`	Optional	Array/list	All	No	Container command
`boost.args`	array	`[]`	Optional	Array/list	All	No	Container arguments
`boost.resources.requests.memory`	string	`1024Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`boost.resources.requests.cpu`	string	`250m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`boost.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`boost.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations
`boost.affinity`	object	`{}`	Optional	Key-value pairs	All	Optional	Affinity rules

Boost Environment Variables

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`boost.env.JITERA_BOOST_MODEL_FILTER`	string	`id._ilike=jitera%latest`	Optional	String	All	Optional	Model filter
`boost.env.JITERA_BOOST_PROLOGUE_MODULES`	string	`log-workflow;jitera-boost-auth`	Optional	String	All	Optional	Prologue modules
`boost.env.JITERA_BOOST_DEFAULT_WORKFLOW`	string	`jitera-workflow-resolver;chat-completion`	Optional	String	All	Optional	Default workflow
`boost.env.JITERA_BOOST_EPILOGUE_MODULES`	string	`jitera-log-usage`	Optional	String	All	Optional	Epilogue modules
`boost.env.JITERA_BOOST_SEARXNG_URL`	string	`https://searxng.<your-domain>`	Optional	Valid URL or domain name	All	Optional	SearXNG search engine URL
`boost.env.JITERA_BOOST_CONTEXT_SYSTEM_SERVICE_URL`	string	`http://context-proto.jitera/`	Optional	Valid URL or domain name	All	Optional	Context system service URL
`boost.env.JITERA_BOOST_ROLLBAR_ENVIRONMENT`	string	`pilot`	Optional	e.g. `production`, `staging`	All	Optional	Rollbar environment label (free-form string used to group errors in the Rollbar dashboard)
`boost.env.OTEL_ENABLED`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable OpenTelemetry

Playwright

Browser automation service.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`playwright.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Playwright service
`playwright.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`playwright.command`	array	`["/bin/bash"]`	Optional	Array/list	All	No	Container command
`playwright.args`	array	`["-c", "playwright run-server --port=9222"]`	Optional	Array/list	All	No	Container arguments
`playwright.resources.requests.memory`	string	`512Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`playwright.resources.requests.cpu`	string	`150m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`playwright.resources.limits.memory`	string	`4Gi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`playwright.resources.limits.cpu`	string	`4000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit

HTML Conversion

HTML document conversion service (API + Worker architecture).

HTML Conversion API

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`html_conversion.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable HTML conversion API
`html_conversion.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`html_conversion.command`	array	`["node", "dist/main.js"]`	Optional	Array/list	All	No	Container command
`html_conversion.resources.requests.memory`	string	`512Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`html_conversion.resources.requests.cpu`	string	`256m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`html_conversion.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations
`html_conversion.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`html_conversion.affinity`	object	`{}`	Optional	Key-value pairs	All	Optional	Affinity rules
`html_conversion.config`	object	`{}`	Optional	Key-value pairs	All	Optional	Additional configuration
`html_conversion.secret`	object	`{}`	Optional	Secure random string	All	Optional	Additional secrets

HTML Conversion Worker

Background worker for processing conversion jobs.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`html_conversion_worker.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable HTML conversion worker
`html_conversion_worker.replicaCount`	number	`2`	Optional	Positive integer	All	Optional	Number of replicas
`html_conversion_worker.command`	array	`["node", "dist/worker.js"]`	Optional	Array/list	All	No	Container command
`html_conversion_worker.resources.requests.memory`	string	`512Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`html_conversion_worker.resources.requests.cpu`	string	`256m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request

Database and Middleware Services

PostgreSQL

PostgreSQL database using Bitnami Helm chart. Upstream Documentation: Bitnami PostgreSQL Chart

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`postgresql.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable PostgreSQL
`postgresql.global.postgresql.auth.postgresPassword`	string	`<REPLACE_WITH_YOUR_PASSWORD>`	Required	Secure random string	All	Yes	PostgreSQL superuser password
`postgresql.global.postgresql.auth.username`	string	`<REPLACE_WITH_YOUR_DB_USER>`	Required	String	All	Yes	PostgreSQL username
`postgresql.global.postgresql.auth.password`	string	`<REPLACE_WITH_YOUR_DB_PASSWORD>`	Required	Secure random string	All	Yes	PostgreSQL user password
`postgresql.global.postgresql.auth.database`	string	`<REPLACE_WITH_YOUR_DB_NAME>`	Required	User-provided value	All	Yes	PostgreSQL database name
`postgresql.image.tag`	string	`14.15.0`	Optional	Valid image tag	All	No	PostgreSQL image tag

Redis

Redis cache using Bitnami Helm chart. Upstream Documentation: Bitnami Redis Chart

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`redis.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Redis
`redis.image.tag`	string	`6.2.16-debian-12-r3`	Optional	Valid image tag	All	No	Redis image tag
`redis.persistence.size`	string	`2Gi`	Optional	Storage size (e.g., `1Gi`, `10Gi`, `100Gi`)	All	Optional	Persistent volume size
`redis.architecture`	string	`standalone`	Optional	`standalone`, `replication`	All	Optional	Redis architecture (standalone or replication)
`redis.auth.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable authentication
`redis.auth.sentinel`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable sentinel authentication
`redis.auth.password`	string	`""`	Conditional	Secure random string	All	Yes	Redis password (required only if auth.enabled is true)
`redis.master.service.ports.redis`	string	`"6379"`	Optional	Valid port number (1-65535)	All	Optional	Redis port

MongoDB

MongoDB database using Bitnami Helm chart. Upstream Documentation: Bitnami MongoDB Chart

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`mongodb.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable MongoDB
`mongodb.architecture`	string	`standalone`	Optional	`standalone`, `replicaset`	All	Optional	MongoDB architecture
`mongodb.image.tag`	string	`5.0.24-debian-11-r20`	Optional	Valid image tag	All	No	MongoDB image tag
`mongodb.global.storageClass`	string	`default`	Optional	String	All	Optional	Global storage class
`mongodb.persistence.storageClass`	string	`default`	Optional	String	All	Optional	Persistence storage class
`mongodb.persistence.size`	string	`5Gi`	Optional	Storage size (e.g., `1Gi`, `10Gi`, `100Gi`)	All	Optional	Persistent volume size
`mongodb.useStatefulSet`	boolean	`true`	Optional	`true`, `false`	All	Optional	Use StatefulSet
`mongodb.auth.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable authentication
`mongodb.auth.databases`	array	`[<REPLACE_WITH_YOUR_MONGO_DB_NAME>]`	Required	Array/list	All	Yes	Database names
`mongodb.auth.usernames`	array	`[<REPLACE_WITH_YOUR_MONGO_DB_USER>]`	Required	Array/list	All	Yes	Usernames
`mongodb.auth.passwords`	array	`[<REPLACE_WITH_YOUR_MONGO_DB_PASSWORD>]`	Required	Secure random string	All	Yes	Passwords
`mongodb.resources.requests.cpu`	string	`400m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`mongodb.resources.requests.memory`	string	`300Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`mongodb.resources.limits.cpu`	string	`1000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit
`mongodb.resources.limits.memory`	string	`1500Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit

RabbitMQ

RabbitMQ message broker using Bitnami Helm chart. Upstream Documentation: Bitnami RabbitMQ Chart

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`rabbitmq.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable RabbitMQ
`rabbitmq.image.tag`	string	`3.8.35-debian-11-r5`	Optional	Valid image tag	All	No	RabbitMQ image tag
`rabbitmq.auth.tls.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable TLS
`rabbitmq.auth.erlangCookie`	string	`FfVGOArPN3fehzeSAzyFsiY71yyZm2Ss`	Required	String	All	Optional	Erlang cookie (should be changed)
`rabbitmq.auth.username`	string	`admin`	Required	String	All	Optional	RabbitMQ username
`rabbitmq.auth.password`	string	`<REPLACE_WITH_YOUR_RABBITMQ_PASSWORD>`	Required	Secure random string	All	Yes	RabbitMQ password
`rabbitmq.extraConfiguration`	string	`consumer_timeout= 31622400000`	Optional	String	All	Optional	Extra RabbitMQ configuration
`rabbitmq.persistence.size`	string	`2Gi`	Optional	Storage size (e.g., `1Gi`, `10Gi`, `100Gi`)	All	Optional	Persistent volume size
`rabbitmq.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`rabbitmq.resources.requests.memory`	string	`256Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`rabbitmq.resources.limits.cpu`	string	`1000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit
`rabbitmq.resources.limits.memory`	string	`1000Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit

Hasura

Hasura GraphQL Engine.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`hasura.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Hasura
`hasura.nameOverride`	string	`""`	Optional	String	All	No	Name override
`hasura.fullnameOverride`	string	`""`	Optional	String	All	No	Full name override
`hasura.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`hasura.env.HASURA_GRAPHQL_ENABLE_CONSOLE`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable Hasura console
`hasura.env.HASURA_GRAPHQL_DEV_MODE`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable development mode
`hasura.env.HASURA_GRAPHQL_ENABLED_LOG_TYPES`	string	`startup, http-log, webhook-log, websocket-log, query-log`	Optional	String	All	Optional	Enabled log types
`hasura.resources.limits.cpu`	string	`1000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit
`hasura.resources.limits.memory`	string	`1Gi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`hasura.resources.requests.cpu`	string	`500m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`hasura.resources.requests.memory`	string	`512Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`hasura.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`hasura.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations
`hasura.affinity`	object	`{}`	Optional	Key-value pairs	All	Optional	Affinity rules

Note: When HASURA_GRAPHQL_ENABLE_CONSOLE is true, an ingress is automatically created at https://your-domain.com/hasura/console.

Kong

Kong API Gateway using Kong Helm chart. Upstream Documentation: Kong Helm Chart

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`kong.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Kong
`kong.replicaCount`	number	`2`	Optional	Positive integer	All	Optional	Number of replicas
`kong.env.prefix`	string	`/kong_prefix/`	Optional	String	All	Optional	Kong prefix path
`kong.env.database`	string	`off`	Optional	`off` (DB-less)	All	Optional	Database mode (DB-less)
`kong.env.plugins`	string	`bundled,jwt,acme`	Optional	String	All	Optional	Enabled plugins
`kong.env.client_body_buffer_size`	string	`5120k`	Optional	String	All	Optional	Client body buffer size
`kong.env.real_ip_header`	string	`x-real-ip`	Optional	String	All	Optional	Real IP header
`kong.env.trusted_ips`	string	`0.0.0.0/0,::/0`	Optional	String	All	Optional	Trusted IP addresses
`kong.image.repository`	string	`kong`	Optional	Valid image repository URL	All	No	Kong image repository
`kong.image.tag`	string	`3.7`	Optional	Valid image tag	All	No	Kong image tag
`kong.effectiveSemver`	string	“	Required	String	All	Optional	Effective semantic version
`kong.pullPolicy`	string	`IfNotPresent`	Optional	`Always`, `IfNotPresent`, `Never`	All	Optional	Image pull policy
`kong.ingressController.ingressClass`	string	`kong`	Optional	String	All	Optional	Ingress class name
`kong.postgresql.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable PostgreSQL (DB-less mode)
`kong.proxy.loadBalancerSourceRanges`	list of strings	`[]`	Optional — 非推奨	CIDR ブロックのリスト	AWS (CLB)	Yes	Kong サブチャートにより公開されていますが非推奨です。Layer-4 IP フィルタリングは Helm の values ではなく、インフラストラクチャレイヤー（事前作成した Security Group / NSG）で管理すべきです。下記の Warning を参照してください。

Note: ACM 証明書を使用した AWS LoadBalancer 構成については、values ファイル内のコメントアウトされた設定を参照してください。

Layer-4 IP フィルタリングはインフラストラクチャレイヤーの責務です — kong.proxy.loadBalancerSourceRanges は使用しないでください。 Security Group（AWS）または NSG（Azure）をインフラストラクチャレイヤーで事前作成し、Helm チャートの外側で関連付けてください：

AWS EKS：事前作成した Security Group を Kong プロキシ Service の service.beta.kubernetes.io/aws-load-balancer-security-groups アノテーションで関連付けます。AWS EKSインストールを参照してください。
Azure AKS：事前作成した NSG を AKS ノードサブネットに関連付けます。Azure Standard Load Balancer にソース範囲を設定すると、Pod ヘアピン通信を壊す DSR セッション追跡のバグも発生します。Azure AKSインストールを参照してください。

これにより SG/NSG のライフサイクルを helm install / helm uninstall から切り離せます。

PGVector

PostgreSQL with pgvector extension for vector embeddings.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`pgvector.nameOverride`	string	`""`	Optional	String	All	No	Name override
`pgvector.fullnameOverride`	string	`""`	Optional	String	All	No	Full name override
`pgvector.image.repository`	string	`pgvector/pgvector`	Optional	Valid image repository URL	All	No	PGVector image repository
`pgvector.image.tag`	string	`pg16`	Optional	Valid image tag	All	No	PGVector image tag
`pgvector.image.pullPolicy`	string	`IfNotPresent`	Optional	`Always`, `IfNotPresent`, `Never`	All	Optional	Image pull policy
`pgvector.postgresql.username`	string	`<REPLACE_WITH_YOUR_DB_USER>`	Required	String	All	Yes	PostgreSQL username
`pgvector.postgresql.password`	string	`<REPLACE_WITH_YOUR_DB_PASSWORD>`	Required	Secure random string	All	Yes	PostgreSQL password
`pgvector.postgresql.database`	string	`<REPLACE_WITH_YOUR_DB_NAME>`	Required	User-provided value	All	Yes	PostgreSQL database name
`pgvector.postgresql.port`	number	`5432`	Optional	Valid port number (1-65535)	All	Optional	PostgreSQL port
`pgvector.persistence.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable persistence
`pgvector.persistence.size`	string	`64Gi`	Optional	Storage size (e.g., `1Gi`, `10Gi`, `100Gi`)	All	Optional	Persistent volume size
`pgvector.persistence.storageClassName`	string	`""`	Optional	String	All	Optional	Storage class name
`pgvector.resources.limits.cpu`	string	`1000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit
`pgvector.resources.limits.memory`	string	`1Gi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`pgvector.resources.requests.cpu`	string	`500m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`pgvector.resources.requests.memory`	string	`512Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request

External Services

Configuration for using external managed services instead of self-hosted ones.

External PostgreSQL

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`externalPostgres.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Use external PostgreSQL
`externalPostgres.username`	string	`<REPLACE_WITH_YOUR_DB_USER>`	Required	String	All	Yes	PostgreSQL username
`externalPostgres.password`	string	`<REPLACE_WITH_YOUR_DB_PASSWORD>`	Required	Secure random string	All	Yes	PostgreSQL password
`externalPostgres.host`	string	`<REPLACE_WITH_YOUR_POSTGRES_HOST>`	Required	User-provided value	All	Yes	PostgreSQL host
`externalPostgres.port`	string	`5432`	Conditional	Valid port number (1-65535)	All	Conditional	PostgreSQL port
`externalPostgres.dbName`	string	`<REPLACE_WITH_YOUR_DB_NAME>`	Required	String	All	Yes	Database name
`externalPostgres.maxOpenConns`	string	`20`	Conditional	String	All	Conditional	Maximum open connections
`externalPostgres.maxIdleConns`	string	`5`	Conditional	String	All	Conditional	Maximum idle connections

External Redis

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`externalRedis.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Use external Redis
`externalRedis.host`	string	`<REPLACE_WITH_YOUR_REDIS_HOST>`	Required	User-provided value	All	Yes	Redis host
`externalRedis.port`	number	`6379`	Conditional	Valid port number (1-65535)	All	Conditional	Redis port
`externalRedis.username`	string	`<REPLACE_WITH_YOUR_REDIS_USER>`	Required	String	All	Yes	Redis username
`externalRedis.password`	string	`<REPLACE_WITH_YOUR_REDIS_PASSWORD>`	Required	Secure random string	All	Yes	Redis password
`externalRedis.useTls`	boolean	`true`	Conditional	`true`, `false`	All	Conditional	Use TLS connection

External MongoDB

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`externalMongodb.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Use external MongoDB
`externalMongodb.mongodb_uri`	string	`<REPLACE_WITH_YOUR_MONGODB_URI>`	Required	User-provided value	All	Yes	MongoDB connection URI

Example URIs:

Atlas: mongodb+srv://user:pass@cluster.mongodb.net/dbname?retryWrites=true&w=majority&authSource=admin
Standalone: mongodb://user:pass@host:27017/dbname?retryWrites=true&w=majority&authSource=admin
ReplicaSet: mongodb://user:pass@host:27017/dbname?retryWrites=true&w=majority&authSource=admin&replicaSet=rs0

External PGVector

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`externalPgvector.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Use external PGVector
`externalPgvector.host`	string	`<REPLACE_WITH_YOUR_PGVECTOR_HOST>`	Required	User-provided value	All	Yes	PGVector host
`externalPgvector.port`	string	`5432`	Conditional	Valid port number (1-65535)	All	Conditional	PGVector port
`externalPgvector.username`	string	`<REPLACE_WITH_YOUR_PGVECTOR_USER>`	Required	String	All	Yes	PGVector username
`externalPgvector.password`	string	`<REPLACE_WITH_YOUR_PGVECTOR_PASSWORD>`	Required	Secure random string	All	Yes	PGVector password
`externalPgvector.database`	string	`<REPLACE_WITH_YOUR_PGVECTOR_DB>`	Required	User-provided value	All	Yes	PGVector database name
`externalPgvector.sslMode`	string	`disable`	Conditional	`disable`	All	Conditional	SSLモード — `disable`のまま使用。外部PGVectorのTLS強制は現在のチャートではサポートされていません。

External RabbitMQ

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`externalRabbitmq.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Use external RabbitMQ
`externalRabbitmq.host`	string	`<REPLACE_WITH_YOUR_RABBITMQ_HOST>`	Required	User-provided value	All	Yes	ホスト名のみ — プロトコル（`amqps://`）やポート（`:5671`）を含めないこと。チャートがポートを別途付加します。
`externalRabbitmq.port`	string	`5672`	Conditional	Valid port number (1-65535)	All	Conditional	RabbitMQ port
`externalRabbitmq.username`	string	`<REPLACE_WITH_YOUR_RABBITMQ_USER>`	Required	String	All	Yes	RabbitMQ username
`externalRabbitmq.password`	string	`<REPLACE_WITH_YOUR_RABBITMQ_PASSWORD>`	Required	Secure random string	All	Yes	RabbitMQ password
`externalRabbitmq.useTls`	boolean	`true`	Conditional	`true`, `false`	All	Conditional	TLS接続を使用

Monitoring Stack

Global Monitoring Configuration

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Master switch for all monitoring components

Prometheus

Metrics collection and alerting.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.prometheus.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`monitoring.prometheus.retention`	string	`15d`	Conditional	Duration (e.g., `24h`, `7d`, `15d`)	All	Optional	Metrics retention period
`monitoring.prometheus.scrapeInterval`	string	`15s`	Conditional	Duration (e.g., `15s`, `1m`, `1h`)	All	Optional	Scrape interval
`monitoring.prometheus.evaluationInterval`	string	`15s`	Conditional	Duration (e.g., `15s`, `1m`, `1h`)	All	Optional	Rule evaluation interval
`monitoring.prometheus.persistence.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable persistence
`monitoring.prometheus.persistence.size`	string	`50Gi`	Optional	Storage size (e.g., `1Gi`, `10Gi`, `100Gi`)	All	Optional	Persistent volume size
`monitoring.prometheus.persistence.accessMode`	string	`ReadWriteOnce`	Optional	`ReadWriteOnce`, `ReadWriteMany`, `ReadOnlyMany`	All	Optional	Access mode
`monitoring.prometheus.persistence.storageClass`	string	`""`	Optional	String	All	Optional	Storage class
`monitoring.prometheus.resources.requests.memory`	string	`512Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`monitoring.prometheus.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`monitoring.prometheus.resources.limits.memory`	string	`2Gi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`monitoring.prometheus.resources.limits.cpu`	string	`1000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit
`monitoring.prometheus.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`monitoring.prometheus.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations
`monitoring.prometheus.additionalScrapeConfigs`	array	`[]`	Conditional	Array/list	All	Optional	Additional scrape configurations
`monitoring.prometheus.externalLabels`	object	`{}`	Conditional	Key-value pairs	All	Optional	External labels (useful for multi-cluster)

Prometheus Remote Write

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.prometheus.remoteWrite.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable remote write
`monitoring.prometheus.remoteWrite.configs`	array	See values file	Remote write endpoint configurations

Supported Remote Write Endpoints:

Azure Managed Prometheus (with sidecar authentication)
Basic authentication
Bearer token authentication
AWS Managed Prometheus (Amazon Managed Service for Prometheus)
Grafana Cloud
Custom headers

Grafana

Metrics visualization and dashboards.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.grafana.adminUser`	string	`admin`	Conditional	String	All	Optional	Grafana admin username
`monitoring.grafana.adminPassword`	string	`REPLACE_WITH_YOUR_PASSWORD`	Required	Secure random string	All	Yes	Grafana admin password (MUST change in production)
`monitoring.grafana.persistence.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable persistence
`monitoring.grafana.persistence.size`	string	`5Gi`	Optional	Storage size (e.g., `1Gi`, `10Gi`, `100Gi`)	All	Optional	Persistent volume size
`monitoring.grafana.persistence.storageClass`	string	`""`	Optional	String	All	Optional	Storage class
`monitoring.grafana.persistence.accessModes`	array	`[ReadWriteOnce]`	Optional	`ReadWriteOnce`, `ReadWriteMany`, `ReadOnlyMany`	All	Optional	Access modes
`monitoring.grafana.resources.requests.memory`	string	`256Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`monitoring.grafana.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`monitoring.grafana.resources.limits`	object	`{}`	Optional	Key-value pairs	All	Optional	Resource limits
`monitoring.grafana.env`	object	`{}`	Conditional	Key-value pairs	All	Optional	Environment variables

Loki

Log aggregation system.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.loki.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Loki
`monitoring.loki.storage.type`	string	`filesystem`	Conditional	filesystem, s3, azure	All	Optional	Storage type (options: `filesystem`, `s3`, `azure`)
`monitoring.loki.persistence.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable persistence
`monitoring.loki.persistence.size`	string	`10Gi`	Optional	Storage size (e.g., `1Gi`, `10Gi`, `100Gi`)	All	Optional	Persistent volume size
`monitoring.loki.persistence.storageClass`	string	`""`	Optional	String	All	Optional	Storage class
`monitoring.loki.resources.requests.memory`	string	`256Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`monitoring.loki.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`monitoring.loki.resources.limits`	object	`{}`	Optional	Key-value pairs	All	Optional	Resource limits

Loki S3 Storage

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.loki.storage.s3.bucketName`	string	`""`	Conditional	Valid bucket/container name	All	Optional	S3 bucket name
`monitoring.loki.storage.s3.region`	string	`""`	Conditional	Valid cloud region identifier	All	Optional	AWS region
`monitoring.loki.storage.s3.accessKeyId`	string	`""`	Conditional	Secure random string	All	Yes	AWS access key ID
`monitoring.loki.storage.s3.secretAccessKey`	string	`""`	Conditional	Secure random string	All	Yes	AWS secret access key
`monitoring.loki.storage.s3.endpoint`	string	`""`	Conditional	Valid URL or domain name	All	Optional	S3-compatible endpoint
`monitoring.loki.storage.s3.s3ForcePathStyle`	boolean	`false`	Conditional	`true`, `false`	All	Optional	Force path-style URLs
`monitoring.loki.storage.s3.insecure`	boolean	`false`	Conditional	`true`, `false`	All	Optional	Disable SSL

Loki Azure Storage

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.loki.storage.azure.accountName`	string	`""`	Conditional	String	All	Optional	Azure storage account name
`monitoring.loki.storage.azure.accountKey`	string	`""`	Conditional	Secure random string	All	Yes	Azure storage account key
`monitoring.loki.storage.azure.containerName`	string	`""`	Conditional	Valid bucket/container name	All	Optional	Azure container name
`monitoring.loki.storage.azure.endpointSuffix`	string	`""`	Conditional	Valid URL or domain name	All	Optional	Endpoint suffix
`monitoring.loki.storage.azure.useManagedIdentity`	boolean	`false`	Conditional	`true`, `false`	All	Optional	Use managed identity

Promtail

Log collection agent.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.promtail.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Promtail (auto-deployed with Loki)
`monitoring.promtail.resources.requests.memory`	string	`128Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`monitoring.promtail.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`monitoring.promtail.resources.limits`	object	`{}`	Optional	Key-value pairs	All	Optional	Resource limits
`monitoring.promtail.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`monitoring.promtail.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations

Note: When enabled=false, manually configure existing Promtail to add this Loki endpoint.

OpenTelemetry

Observability framework for traces and metrics.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.opentelemetry.samplerRatio`	string	`1.0`	Conditional	0.0 to 1.0 (percentage)	All	Optional	Global sampling ratio (1.0 = 100%, 0.1 = 10%)
`monitoring.opentelemetry.collector.resources.requests.memory`	string	`256Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`monitoring.opentelemetry.collector.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`monitoring.opentelemetry.collector.resources.limits`	object	`{}`	Optional	Key-value pairs	All	Optional	Resource limits
`monitoring.opentelemetry.collector.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`monitoring.opentelemetry.collector.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations

Tempo

Distributed tracing backend.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.tempo.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Tempo
`monitoring.tempo.logLevel`	string	`info`	Conditional	`debug`, `info`, `warn`, `error`	All	Optional	Log level
`monitoring.tempo.memBallastSizeMbs`	number	`1024`	Conditional	Number	All	Optional	Memory ballast size (MB)
`monitoring.tempo.resources.requests.memory`	string	`1Gi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`monitoring.tempo.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`monitoring.tempo.resources.limits`	object	`{}`	Optional	Key-value pairs	All	Optional	Resource limits
`monitoring.tempo.storage.type`	string	`local`	Conditional	local, s3, azure, gcs	All	Optional	Storage type (options: `local`, `s3`, `azure`, `gcs`)
`monitoring.tempo.persistence.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable persistence
`monitoring.tempo.persistence.size`	string	`10Gi`	Optional	Storage size (e.g., `1Gi`, `10Gi`, `100Gi`)	All	Optional	Persistent volume size
`monitoring.tempo.persistence.storageClass`	string	`""`	Optional	String	All	Optional	Storage class
`monitoring.tempo.retention`	string	`24h`	Conditional	Duration (e.g., `24h`, `7d`, `15d`)	All	Optional	Trace retention period
`monitoring.tempo.ingester.maxBlockDuration`	string	`30m`	Conditional	String	All	Optional	Maximum block duration
`monitoring.tempo.search.maxDuration`	string	`24h`	Conditional	String	All	Optional	Maximum search duration
`monitoring.tempo.limits.maxTracesPerUser`	number	`10000`	Optional	Number	All	Optional	Maximum traces per user
`monitoring.tempo.limits.maxBytesPerTrace`	number	`5000000`	Optional	Number	All	Optional	Maximum bytes per trace
`monitoring.tempo.limits.ingestionRateLimitBytes`	number	`15000000`	Optional	Number	All	Optional	Ingestion rate limit (bytes)
`monitoring.tempo.limits.ingestionBurstSizeBytes`	number	`20000000`	Optional	Number	All	Optional	Ingestion burst size (bytes)
`monitoring.tempo.env`	object	`{}`	Conditional	Key-value pairs	All	Optional	Environment variables
`monitoring.tempo.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`monitoring.tempo.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations

Note: Cloud storage configurations (S3, Azure, GCS) are available in the values file.

Node Exporter

System metrics collector (runs on all nodes).

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.nodeExporter.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Node Exporter
`monitoring.nodeExporter.external.namespace`	string	`kube-system`	Conditional	Valid port number (1-65535)	All	Optional	External Node Exporter namespace
`monitoring.nodeExporter.external.serviceName`	string	`kube-prometheus-stack-prometheus-node-exporter`	Conditional	Valid port number (1-65535)	All	Optional	External service name
`monitoring.nodeExporter.resources.requests.memory`	string	`16Mi`	Optional	Valid port number (1-65535)	All	Optional	Memory request
`monitoring.nodeExporter.resources.requests.cpu`	string	`10m`	Optional	Valid port number (1-65535)	All	Optional	CPU request
`monitoring.nodeExporter.resources.limits`	object	`{}`	Optional	Key-value pairs	All	Optional	Resource limits
`monitoring.nodeExporter.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`monitoring.nodeExporter.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations

Kube State Metrics

Kubernetes object metrics exporter.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.kubeStateMetrics.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable Kube State Metrics
`monitoring.kubeStateMetrics.external.namespace`	string	`kube-system`	Conditional	String	All	Optional	External kube-state-metrics namespace
`monitoring.kubeStateMetrics.external.serviceName`	string	`kube-prometheus-stack-kube-state-metrics`	Conditional	String	All	Optional	External service name
`monitoring.kubeStateMetrics.resources.requests.memory`	string	`64Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`monitoring.kubeStateMetrics.resources.requests.cpu`	string	`10m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`monitoring.kubeStateMetrics.resources.limits`	object	`{}`	Optional	Key-value pairs	All	Optional	Resource limits
`monitoring.kubeStateMetrics.nodeSelector`	object	`{}`	Optional	Key-value pairs	All	Optional	Node selector
`monitoring.kubeStateMetrics.tolerations`	array	`[]`	Optional	Array/list	All	Optional	Tolerations

TLS Configuration

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`monitoring.useTls`	boolean	`true`	Conditional	`true`, `false`	All	Optional	Use TLS for monitoring services

MinIO

Self-hosted S3-compatible object storage.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`minio.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable MinIO
`minio.name`	string	`minio`	Optional	String	All	Optional	MinIO name
`minio.mode`	string	`distributed`	Optional	standalone, distributed	All	Optional	MinIO mode (options: `standalone`, `distributed`)
`minio.replicas`	number	`4`	Optional	Positive integer	All	Optional	Number of MinIO server pods (distributed mode only)
`minio.imagePullSecrets`	array	`[]`	Optional	Secure random string	All	Optional	Image pull secrets
`minio.resources.requests.memory`	string	`512Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request
`minio.resources.requests.cpu`	string	`250m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`minio.resources.limits.memory`	string	`2Gi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`minio.resources.limits.cpu`	string	`1000m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit
`minio.persistence.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable persistence
`minio.persistence.storageClass`	string	`""`	Optional	String	All	Optional	Storage class
`minio.persistence.size`	string	`10Gi`	Optional	Storage size (e.g., `1Gi`, `10Gi`, `100Gi`)	All	Optional	Persistent volume size per pod
`minio.persistence.accessMode`	string	`ReadWriteOnce`	Optional	`ReadWriteOnce`, `ReadWriteMany`, `ReadOnlyMany`	All	Optional	Access mode

Note: Buckets and users are automatically created from storage.secret.minio configuration. Console admin credentials are console/console123.

Mail Service

Self-hosted mail relay service.

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`mail.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable mail relay service
`mail.replicaCount`	number	`1`	Optional	Positive integer	All	Optional	Number of replicas
`mail.resources.limits.cpu`	string	`500m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU limit
`mail.resources.limits.memory`	string	`512Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory limit
`mail.resources.requests.cpu`	string	`100m`	Optional	CPU units (e.g., `100m`, `1000m`, `2`)	All	Optional	CPU request
`mail.resources.requests.memory`	string	`128Mi`	Optional	Memory units (e.g., `128Mi`, `1Gi`, `2Gi`)	All	Optional	Memory request

Mail Persistence

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`mail.persistence.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable persistence
`mail.persistence.accessModes`	array	`[ReadWriteOnce]`	Optional	`ReadWriteOnce`, `ReadWriteMany`, `ReadOnlyMany`	All	Optional	Access modes
`mail.persistence.existingClaim`	string	`""`	Optional	String	All	Optional	Existing PVC name
`mail.persistence.size`	string	`1Gi`	Optional	Storage size (e.g., `1Gi`, `10Gi`, `100Gi`)	All	Optional	Persistent volume size
`mail.persistence.storageClass`	string	`""`	Optional	String	All	Optional	Storage class

Mail Log Rotation

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`mail.logrotate.enabled`	boolean	`true`	Optional	`true`, `false`	All	Optional	Enable log rotation
`mail.logrotate.path`	string	`/var/log/mail.log`	Optional	String	All	Optional	Log file path
`mail.logrotate.rotate`	number	`7`	Optional	Number	All	Optional	Number of rotated files to keep
`mail.logrotate.maxage`	number	`30`	Optional	Number	All	Optional	Maximum age in days
`mail.logrotate.maxsize`	string	`100M`	Optional	String	All	Optional	Maximum size before rotation

Mail Configuration

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`mail.config.postfix.mynetworks`	string	`""`	Optional	String	All	Optional	Trusted networks

DKIM Configuration

Parameter	Type	Default	Required	Allowed Values	Environment	User Changeable	Description
`mail.mountSecret.enabled`	boolean	`false`	Optional	`true`, `false`	All	Optional	Enable DKIM private key mounting
`mail.mountSecret.path`	string	`/etc/opendkim/keys`	Optional	Secure random string	All	Optional	DKIM keys mount path
`mail.mountSecret.data`	object	`{}`	Optional	Secure random string	All	Optional	DKIM private key data

Note: When mail.enabled=true, SMTP settings are automatically populated from mailer.smtp_settings and mailer.default_from_email.

Additional Configuration Files

Some services load additional configuration from separate files:

LiteLLM: Proxy configuration is loaded from extra_config/litellm-proxy-config.yaml
Automation Proxies: Trusted proxy configuration can be set in extra_config/proxies.yaml

セキュリティベストプラクティス

本番環境にデプロイする前にすべてのデフォルトパスワードを変更してください
pwgenやopenssl randなどのツールを使用してシークレットの安全なランダム値を生成してください
SSL証明書の自動管理にcert-manager を使用してください
すべての外部公開サービスで認証を有効化してください
適切なネットワークポリシーとファイアウォールルールを設定してください
セキュリティ脆弱性の修正のためコンテナイメージを定期的に更新してください
可能であれば本番ワークロードに外部マネージドサービス（RDS、ElastiCacheなど）を使用してください
コンプライアンスとセキュリティ監視のために監査ログを有効化してください
すべての永続データに対してバックアップ戦略を設定してください
機密性の高い認証情報にはシークレット管理ツール（HashiCorp Vault、Azure Key Vault、AWS Secrets Managerなど）を使用してください

リリースノート

Documentation Index

​クイックリファレンス: オーバーライド必須パラメータ

​オプションだが一般的に設定されるもの

​凡例

​必須ステータス

​許容値

​環境

​ユーザー変更可否

​目次

​Container Registry Configuration

​registryCredentials

​Container Images

​image

​Monitoring Stack Images

​JWT Configuration

​jwt

​Credentials

​credentials.github

​credentials.git_webhook_secret

​credentials.translator

​credentials.rollbar

​credentials.hasura

​credentials.boost

​Azure OpenAI Instance Configurations

​Instance 1

​credentials.vllm

​credentials.html_conversion

​Audit Logs

​auditLogs

​Azure Data Explorer Output

​Azure Blob Output

​AWS S3 Output

​OpenAI Configuration

​openai

​OpenAI Keys

​Azure OpenAI Keys

​Azure OpenAI Global Instances (AI Agent)

​GPT-5 Models (US and Sweden regions only)

​AWS Bedrock (AI Agent)

​Anthropic (AI Agent)

​Google AI (AI Agent)

​Ingress Configuration

​ingress

​MinIO Ingress

​Ingress Annotations

​TLS Configuration

​Monitoring Ingress

​Grafana

​Prometheus

​Storage Configuration

​storage

​MinIO Storage Configuration

​AWS S3 Storage Configuration

​Azure Storage Configuration

​Company Settings

​company

​Email Configuration

​mailer

​Self-hosted SMTP Server

​smtp

​SMTP Configuration

​SMTP Authentication

​SMTP Service

​SMTP Resources

​Microservices

​Frontend

​Frontend Environment Variables

​SWEF

​SWEF Environment Variables

​Automation

​Rails Service

​Sidekiq Service

​Sidekiq Priority Service

​RPC Service

​Identifier Service

​Automation Environment Variables

​Automation Pod Configuration

​Ultron

​Ultron Environment Variables

クイックリファレンス: オーバーライド必須パラメータ

オプションだが一般的に設定されるもの

凡例

必須ステータス

許容値

環境

ユーザー変更可否

目次

Container Registry Configuration

`registryCredentials`

Container Images

`image`

Monitoring Stack Images

JWT Configuration

`jwt`

Credentials

`credentials.github`

`credentials.git_webhook_secret`

`credentials.translator`

`credentials.rollbar`

`credentials.hasura`

`credentials.boost`

Azure OpenAI Instance Configurations

Instance 1

`credentials.vllm`

`credentials.html_conversion`

Audit Logs

`auditLogs`

Azure Data Explorer Output

Azure Blob Output

AWS S3 Output

OpenAI Configuration

`openai`

OpenAI Keys

Azure OpenAI Keys

Azure OpenAI Global Instances (AI Agent)

GPT-5 Models (US and Sweden regions only)

AWS Bedrock (AI Agent)

Anthropic (AI Agent)

Google AI (AI Agent)

Ingress Configuration

`ingress`

MinIO Ingress

Ingress Annotations

TLS Configuration

Monitoring Ingress

Grafana

Prometheus

Storage Configuration

`storage`

MinIO Storage Configuration

AWS S3 Storage Configuration

Azure Storage Configuration

Company Settings

`company`

Email Configuration

`mailer`

Self-hosted SMTP Server

`smtp`

SMTP Configuration

SMTP Authentication

SMTP Service

SMTP Resources

Microservices

Frontend

Frontend Environment Variables

SWEF

SWEF Environment Variables

Automation

Rails Service

Sidekiq Service

Sidekiq Priority Service

RPC Service

Identifier Service

Automation Environment Variables

Automation Pod Configuration

Ultron

Ultron Environment Variables

Ultron Secrets

Document Converter