Overview
The backend uses two PostgreSQL databases:dashboard_auth for authentication/session data and cobi_core for core application data.
Set both connection strings in the backend Secret:
Option A — In-cluster PostgreSQL (Bitnami subchart)
The chart bundles the Bitnami PostgreSQL subchart. Enable it and the chart creates a StatefulSet with a PersistentVolumeClaim.Helm values
Internal service address
Once deployed, PostgreSQL is reachable within the namespace at:Backend connection string
On-premises StorageClass
Option B — External / standalone PostgreSQL
Use this option when you have an existing PostgreSQL instance (on-prem server, managed service, etc.).Disable the subchart
Create the database
Set the backend connection string
Connection string formats
| Scenario | Example |
|---|---|
| On-prem server (no TLS) | postgres://cobi:[email protected]:5432/dashboard_auth?schema=public |
| On-prem server (TLS) | postgres://cobi:[email protected]:5432/dashboard_auth?schema=public&sslmode=require |
| External managed service | postgres://cobi:[email protected]:5432/dashboard_auth?schema=public&sslmode=require |
SSL mode options
sslmode | When to use |
|---|---|
disable | Internal cluster traffic with no TLS requirement |
require | Enforce TLS, skip certificate verification |
verify-full | Full CA verification — compliance or internet-facing connections |
Connecting to an external database from inside the cluster
ExternalName Service (DNS alias):postgres-external:5432 as the host in the connection string.
Endpoints object (IP-based):
Verify the Connection
ECONNREFUSED errors.