Kubernetes
Helm chart deployment with production, development, and air-gapped profiles
Production deployment uses the Helm chart at helm/epistom/.
Installation
Values Files
Three values files support different environments:
Production (values.yaml)
Default production configuration with recommended resource requests, replica counts, and security settings.
Development (values-dev.yaml)
Lower resource requests, debug logging, and relaxed security for development clusters:
Air-Gapped (values-airgapped.yaml)
For deployments without internet access:
- Private container registry references
- No external network dependencies
- Local LLM (Ollama) configuration
Key Configuration
Database
LLM Provider
Oxigraph
Rate Limiting
Production Checklist
- Set
EPISTOM_AUTH_DISABLED=false - Configure
EPISTOM_JWT_SECRET(256-bit hex) - Configure
EPISTOM_ENCRYPTION_KEY(Fernet key) - Configure
EPISTOM_AEGIS_SIGNING_KEY(Ed25519 private key) - Enable Redis for rate limiting across pods
- Set up PostgreSQL with replication for high availability
- Configure HTTPS via ingress controller
- Set
EPISTOM_ENV=production