Helm chart parameters
- Last Updated: March 9, 2026
- 1 minute read
- Hybrid Data Pipeline
- Version 5.0
- Documentation
The following parameters are supported in the Hybrid Data Pipeline Helm chart.
Note:
- For memory and storage size, values must be specified in Mi (Mebibytes) or Gi (Gibibytes). For example, 4096Mi or 4Gi.
- For CPU, values must be specified in millicores (m) or whole cores. For example, 2000m or 2.
| Name | Description | Default value |
|---|---|---|
| hdp.eula.accepted | This parameter manages the End User License Agreement (EULA) acceptance. | false |
| hdp.commonLabels | Add labels to all the Hybrid Data Pipeline deployed resources. | {} |
| hdp.commonAnnotations | Add annotations to all the Hybrid Data Pipeline deployed resources. | {} |
| hdp.labels | Map of labels to add to the Hybrid Data Pipeline statefulset. | {} |
| hdp.annotations | Map of annotations to add to the Hybrid Data Pipeline statefulset. | {} |
| hdp.podLabels | Map of labels to add to the Hybrid Data Pipeline pods. | {} |
| hdp.podAnnotations | Map of annotations to add to the Hybrid Data Pipeline pods. | {} |
| hdp.configLabels | Map of labels to add to the Hybrid Data Pipeline configuration Map. | {} |
| hdp.configAnnotations | Map of annotations to add to the Hybrid Data Pipeline configuration Map. | {} |
| hdp.secretLabels | Map of labels to add to the Hybrid Data Pipeline secrets. | {} |
| hdp.secretAnnotations | Map of annotations to add to the Hybrid Data Pipeline secrets. | {} |
| hdp.replicaCount | The number of Hybrid Data Pipeline server nodes to be deployed. | 2 |
| hdp.image.repository | The fully qualified name of the registry login server and the name of Hybrid Data Pipeline Docker image. | |
| hdp.image.tag | The four digit tag used to identify a version of the Docker image. | |
| hdp.image.pullPolicy | The policy for pulling the Docker image. | IfNotPresent |
| hdp.imagePullSecrets | An array of secrets used to authenticate with the Docker registry. | [] |
| hdp.loadbalancer.hostName | The FQDN used for external access to Hybrid Data Pipeline. | |
| hdp.onPremiseConnector.enabled | The parameter for enabling the On-Premises Connector. | true |
| hdp.fips.enabled | The parameter for enabling FIPS mode for the Hybrid Data Pipeline server. | true |
| hdp.proxy.ipAddresses | A proxy IP address or list of proxy IP addresses separated by the '|' character. | |
| hdp.ports.hdpServer.port | The external port on which the Hybrid Data Pipeline server is exposed. | 8080 |
| hdp.ports.hdpServer.targetPort | The internal port on which the application container is listening for the Hybrid Data Pipeline service. | 8080 |
| hdp.ports.opAccessor.port | The external port on which the On-Premises Access service is exposed. | 40501 |
| hdp.ports.opAccessor.targetPort | The internal port on which the application container is listening for the On-Premises Access service. | 40501 |
| hdp.ports.notificationServer.port | The external port on which the Notification Server is exposed. | 11280 |
| hdp.ports.notificationServer.targetPort | The internal port on which the application container is listening for the Notification Server. | 11280 |
| hdp.database.postgres.enabled | The configuration for enabling the deployment of a PostgreSQL system database. | true |
| hdp.database.postgres.hostName | The hostname of the PostgreSQL database. The value of this parameter must match the value of the postgresql.nameOverride parameter. | postgresql |
| hdp.database.postgres.port | The port number of the PostgreSQL database. | 5432 |
| hdp.database.postgres.schemaName | The name of the system database schema in the PostgreSQL database. | hdp |
| hdp.database.postgres.databaseName | The name of the PostgreSQL database. | hdp |
| hdp.database.postgres.advancedOptions | Additional configurations for the PostgreSQL database. | |
| hdp.persistence.keystore.mountPath | The directory path within the container where the persistent volume will be mounted. | /hdpshare |
| hdp.persistence.keystore.size | The size of the persistent volume to be requested. | 1Gi |
| hdp.persistence.keystore.storageClassName | The name of the StorageClass to be used for the persistent volume. | |
| hdp.persistence.logs.enabled | The parameter for enabling persistent storage for logs. | true |
| hdp.persistence.logs.mountPath | The directory path within the container where the persistent volume for logs will be mounted. | /logs |
| hdp.persistence.logs.size | The size of the persistent volume to be requested for logs. | 1Gi |
| hdp.persistence.logs.storageClassName | The name of the StorageClass to be used for the persistent volume for logs. | |
| hdp.persistence.labels | Additional lables to be added to the persistent volume. | {} |
| hdp.persistence.annotations | Additional Annotations for the persistent volume. | {} |
| hdp.containerSecurityContext.readOnlyRootFilesystem | The parameter for setting the root filesystem as read-only. | true |
| hdp.containerSecurityContext.runAsNonRoot | The parameter for running the container as a non-root user. | true |
| hdp.resources.requests.memory | The minimum RAM for the server container. | 4096Mi |
| hdp.resources.requests.cpu | The minimum CPU for the server container. | 2000m |
| hdp.resources.limits.memory | The maximum RAM for the server container. | 4096Mi |
| hdp.resources.limits.cpu | The maximum CPU for the server container. | 2000m |
| hdp.livenessProbe.enabled | The parameter for enabling the container liveness probe. | true |
| hdp.livenessProbe.initialDelaySeconds | The number of seconds after the container has started before the liveness probe is initiated. | 30 |
| hdp.livenessProbe.periodSeconds | The frequency in seconds that Kubernetes performs the liveness check. | 30 |
| hdp.livenessProbe.timeoutSeconds | The number of seconds after which the liveness probe times out. | 30 |
| hdp.livenessProbe.failureThreshold | The number of consecutive failures required for the liveness probe to be considered failed. | 3 |
| hdp.livenessProbe.successThreshold | The number of consecutive successes required for the liveness probe to be considered successful. | 1 |
| hdp.readinessProbe.enabled | The parameter for enabling the container readiness probe. | true |
| hdp.readinessProbe.initialDelaySeconds | The number of seconds after the container has started before the readiness probe is initiated. | 30 |
| hdp.readinessProbe.periodSeconds | The frequency in seconds that Kubernetes performs the readiness check. | 30 |
| hdp.readinessProbe.timeoutSeconds | The number of seconds after which the readiness probe times out. | 30 |
| hdp.readinessProbe.failureThreshold | The number of consecutive failures required for the readiness probe to be considered failed. | 3 |
| hdp.readinessProbe.successThreshold | The number of consecutive successes required for the readiness probe to be considered successful. | 1 |
| hdp.startupProbe.enabled | The parameter for enabling the container startup probe. | true |
| hdp.startupProbe.initialDelaySeconds | The number of seconds after the container has started before the startup probe is initiated. | 30 |
| hdp.startupProbe.periodSeconds | The frequency in seconds that Kubernetes performs the startup check. | 30 |
| hdp.startupProbe.timeoutSeconds | The number of seconds after which the startup probe times out. | 30 |
| hdp.startupProbe.failureThreshold | The number of consecutive failures required for the startup probe to be considered failed. | 3 |
| hdp.startupProbe.successThreshold | The number of consecutive successes required for the startup probe to be considered successful. | 1 |
| hdp.affinity | Kubernetes affinity configuration for controlling pod placement. | {} |
| hdp.topologySpreadConstraints | Kubernetes topology spread constraints for controlling pod distribution. | [] |
| hdp.services.hdpService.name | The name of the Hybrid Data Pipeline service. | hdpserver |
| hdp.services.hdpService.check | The parameter for enabling a health check against the server. | true |
| hdp.services.hdpService.checkInterval | The frequency of the health check. | 5m |
| hdp.services.hdpService.checkPath | The check path for the server. | /api/healthcheck |
| hdp.services.opAccessorService.name | The name of the On-Premises Access service. | opaccessor |
| hdp.services.opAccessorService.check | The parameter for enabling a health check against On-Premises Access service. | true |
| hdp.services.opAccessorService.checkInterval | The frequency of the health check. | 5m |
| hdp.services.opAccessorService.checkPath | The check path for the On-Premises Access service. | / |
| hdp.services.opAccessorService.aclPath | The ACL path for the On-Premises Access service. | /connect/opa |
| hdp.services.notificationService.name | The name of the Notification Server service. | notificationserver |
| hdp.services.notificationService.check | The parameter for enabling a health check against the Notification Server service. | true |
| hdp.services.notificationService.checkInterval | The frequency of the health check. | 5m |
| hdp.services.notificationService.checkPath | The check path for the Notification Server service. | / |
| hdp.services.notificationService.aclPath | The ACL path for the Notification Server service. | /connect/X_DataDirect_Notification_Server |
| hdp.services.labels | Additional labels to be added to the Hybrid Data Pipeline services. | {} |
| hdp.services.annotations | Additional annotations to be added to the Hybrid Data Pipeline services. | {} |
| hdp.pdb.create | The parameter for enabling PodDisruptionBudget for the Hybrid Data Pipeline server. | true |
| hdp.pdb.minAvailable | The minimum number or percentage of pods that must remain available during voluntary disruptions. | "1" |
| hdp.pdb.maxUnavailable | The maximum number or percentage of pods that can be unavailable during voluntary disruptions. | "" |
| hdp.pdb.annotations | Additional annotations to be added to the PodDisruptionBudget resource. | {} |
| hdp.pdb.labels | Additional labels to be added to the PodDisruptionBudget resource. | {} |
| hdp.hdpingressconfiguration.enabled | The parameter for enabling ingress to the Hybrid Data Pipeline server. | true |
| hdp.hdpingressconfiguration.ingressName | The name of the ingress resource that will be created and managed. | "hdp-ingress" |
| hdp.hdpingressconfiguration.agic.enabled | The parameter for enabling Azure Application Gateway Ingress (AGIC ingress). | true |
| hdp.hdpingressconfiguration.agic.ingressClass | The ingress class to be used by the Azure Application Gateway Ingress Controller (AGIC). | "azure-application-gateway" |
| hdp.hdpingressconfiguration.haproxy.enabled | The parameter for enabling HAProxy ingress (not yet supported). | false |
| hdp.hdpingressconfiguration.clusterType | The type of cluster on which the Hybrid Data Pipeline server is deployed (on-premises deployments are not yet supported). | "cloud" |
| hdp.hdpingressconfiguration.timeout | The timeout in seconds for the ingress controller or load balancer to respond to requests. | 300 |
| hdp.hdpingressconfiguration.tls.enabled | The parameter for enabling TLS communication with the Hybrid Data Pipeline server. | false |
| hdp.hdpingressconfiguration.tls.secretName | The name of the Kubernetes Secret that contains the TLS certificate and private key. | "" |
| hdp.hdpingressconfiguration.labels | Map of labels to add to the Hybrid Data Pipeline ingress. | {} |
| hdp.hdpingressconfiguration.annotations | Map of annotations to add to the Hybrid Data Pipeline ingress. | {} |
| postgresql.architecture | PostgreSQL architecture (`standalone` or `replication`), Default: `standalone`. | standalone |
| postgresql.replication.synchronousCommit | Set synchronous commit mode. Allowed values: `on`, `remote_apply`, `remote_write`, `local` and `off`. | "remote_apply" |
| postgresql.replication.numSynchronousReplicas | Number of replicas that will have synchronous replication. Note: Cannot be greater than `readReplicas.replicaCount`. | 1 |
| postgresql.replication.applicationName | Cluster application name. Useful for advanced replication settings. | hdp |
| postgresql.readReplicas.name | Name of the read replicas database (eg secondary, slave, ...). | read |
| postgresql.readReplicas.replicaCount | Number of PostgreSQL read only replicas. | 2 |
| postgresql.readReplicas.labels | Map of labels to add to the statefulset (PostgreSQL read only). | {} |
| postgresql.readReplicas.annotations | Annotations for PostgreSQL read only pods. | {} |
| postgresql.readReplicas.podLabels | Map of labels to add to the pods (PostgreSQL read only). | {} |
| postgresql.readReplicas.podAnnotations | Map of annotations to add to the pods (PostgreSQL read only). | {} |
| postgresql.readReplicas.containerSecurityContext.enabled | Enabled containers' Security Context. | true |
| postgresql.readReplicas.containerSecurityContext.seLinuxOptions | [object,nullable] Set SELinux options in container. | {} |
| postgresql.readReplicas.containerSecurityContext.runAsUser | Set containers' Security Context runAsUser. | 12321 |
| postgresql.readReplicas.containerSecurityContext.runAsGroup | Set containers' Security Context runAsGroup. | 12321 |
| postgresql.readReplicas.containerSecurityContext.runAsNonRoot | Set container's Security Context runAsNonRoot. | true |
| postgresql.readReplicas.containerSecurityContext.privileged | Set container's Security Context privileged. | false |
| postgresql.readReplicas.containerSecurityContext.readOnlyRootFilesystem | Set container's Security Context readOnlyRootFilesystem. | true |
| postgresql.readReplicas.containerSecurityContext.allowPrivilegeEscalation | Set container's Security Context allowPrivilegeEscalation. | false |
| postgresql.readReplicas.containerSecurityContext.capabilities.drop | List of capabilities to be dropped. | ["ALL"] |
| postgresql.readReplicas.containerSecurityContext.seccompProfile.type | Set container's Security Context seccomp profile. | "RuntimeDefault" |
| postgresql.readReplicas.podAffinityPreset | PostgreSQL read only pod affinity preset. Ignored if `postgresql.primary.affinity` is set. Allowed values: `soft` or `hard`. | "" |
| postgresql.readReplicas.podAntiAffinityPreset | PostgreSQL read only pod anti-affinity preset. Ignored if `postgresql.primary.affinity` is set. Allowed values: `soft` or `hard`. | "soft" |
| postgresql.readReplicas.affinity | Affinity for PostgreSQL read only pods assignment. | {} |
| postgresql.readReplicas.nodeSelector | Node labels for PostgreSQL read only pods assignment. | {} |
| postgresql.readReplicas.tolerations | Tolerations for PostgreSQL read only pods assignment. | [] |
| postgresql.readReplicas.topologySpreadConstraints | Topology Spread Constraints for pod assignment spread across your cluster among failure-domains. Evaluated as a template. | [] |
| postgresql.readReplicas.nodeAffinityPreset.type | PostgreSQL read only node affinity preset type. Ignored if `postgresql.primary.affinity` is set. Allowed values: `soft` or `hard`. | "" |
| postgresql.readReplicas.nodeAffinityPreset.key | PostgreSQL read only node label key to match Ignored if `postgresql.primary.affinity` is set. | "" |
| postgresql.readReplicas.nodeAffinityPreset.values | PostgreSQL read only node label values to match. Ignored if `postgresql.primary.affinity` is set. | [] |
| postgresql.readReplicas.pdb.create | Enable/disable a Pod Disruption Budget creation. | true |
| postgresql.readReplicas.pdb.minAvailable | Minimum number/percentage of pods that should remain scheduled. | "" |
| postgresql.readReplicas.pdb.maxUnavailable | Maximum number/percentage of pods that may be made unavailable. Defaults to `1` if both `readReplicas.pdb.minAvailable` and `readReplicas.pdb.maxUnavailable` are empty. | "" |
| postgresql.auth.replicationUsername | Name of the replication user. | repl_user |
| postgresql.auth.secretKeys.replicationPasswordKey | Name of key in existing secret to use for PostgreSQL credentials. Only used when `auth.existingSecret` is set. | replication-password |
| postgresql.auth.existingSecret | Name of existing secret to use for PostgreSQL credentials. | "account-database-secrets" |
| postgresql.nameOverride | The parameter for overriding the Bitnami PostgreSQL naming template. The value of this parameter must match the value of the hdp.database.postgres.hostname parameter. | "postgresql" |
| postgresql.global.security.allowInsecureImages | The parameter for skipping image verification. | false |
| postgresql.global.postgresql.auth.database | The name of the PostgreSQL system database to be created. | "postgres" |
| postgresql.global.postgresql.auth.existingSecret | The name of an existing Kubernetes Secret that contains the authentication credentials for the PostgreSQL system database. | "account-database-secrets" |
| postgresql.global.postgresql.auth.secretKeys.adminPasswordKey | The key in the existing Secret that contains the admin password for PostgreSQL. | "privileged-postgres-password" |
| postgresql.commonLabels | Add labels to all the deployed resources. | {} |
| postgresql.commonAnnotations | Add annotations to all the deployed resources. | {} |
| postgresql.image.registry | The PostgreSQL image registry [default: REGISTRY_NAME]. | docker.io |
| postgresql.image.repository | The PostgreSQL image repository [default: REPOSITORY_NAME/postgresql]. | bitnamilegacy/postgresql |
| postgresql.image.tag | The PostgreSQL image tag (immutable tags are recommended). | 16.6.0 |
| postgresql.image.digest | The PostgreSQL image digest. For example, sha256:aa.... Please note that this parameter, if set, will override the tag. | "" |
| postgresql.image.pullPolicy | The PostgreSQL image pull policy. | IfNotPresent |
| postgresql.image.pullSecrets | The parameter to specify image pull secrets. | [] |
| postgresql.primary.labels | Map of labels to add to the statefulset (postgresql primary). | {} |
| postgresql.primary.annotations | Annotations for PostgreSQL primary pods. | {} |
| postgresql.primary.podLabels | Map of labels to add to the pods (postgresql primary). | {} |
| postgresql.primary.podAnnotations | Map of annotations to add to the pods (postgresql primary). | {} |
| postgresql.primary.affinity | Affinity for PostgreSQL primary pods assignment. | {} |
| postgresql.primary.nodeSelector | Node labels for PostgreSQL primary pods assignment. | {} |
| postgresql.primary.tolerations | Tolerations for PostgreSQL primary pods assignment. | [] |
| postgresql.primary.podAffinityPreset | PostgreSQL primary pod affinity preset. Ignored if `postgresql.primary.affinity` is set. Allowed values: `soft` or `hard`. | "" |
| postgresql.primary.podAntiAffinityPreset | PostgreSQL primary pod anti-affinity preset. Ignored if `postgresql.primary.affinity` is set. Allowed values: `soft` or `hard`. | "soft" |
| postgresql.primary.topologySpreadConstraints | Topology Spread Constraints for pod assignment spread across your cluster among failure-domains. Evaluated as a template. | [] |
| postgresql.primary.standby.enabled | Whether to enable current cluster's primary as standby server of another cluster or not. | false |
| postgresql.primary.standby.primaryHost | The Host of replication primary in the other cluster. | "" |
| postgresql.primary.standby.primaryPort | The Port of replication primary in the other cluster. | "" |
| postgresql.primary.nodeAffinityPreset.type | PostgreSQL primary node affinity preset type. Ignored if `postgresql.primary.affinity` is set. Allowed values: `soft` or `hard`. | "" |
| postgresql.primary.nodeAffinityPreset.key | PostgreSQL primary node label key to match Ignored if `postgresql.primary.affinity` is set. | "" |
| postgresql.primary.nodeAffinityPreset.values | PostgreSQL primary node label values to match. Ignored if `postgresql.primary.affinity` is set. | [] |
| postgresql.primary.persistence.mountPath | The path where the persistent volume will be mounted. | /bitnami/postgresql |
| postgresql.primary.persistence.storageClass | The name of the StorageClass to be used for the persistent volume. | "" |
| postgresql.primary.persistence.size | The size of the persistent volume to be requested. | 8Gi |
| postgresql.primary.persistence.accessModes | The access modes for the persistent volume. | ["ReadWriteOnce"] |
| postgresql.primary.resources.requests.cpu | The minimum CPU for the primary PostgreSQL instance. | 2 |
| postgresql.primary.resources.requests.memory | The minimum RAM for the primary PostgreSQL instance. | 4Gi |
| postgresql.primary.resources.limits.cpu | The maximum CPU for the primary PostgreSQL instance. | 4 |
| postgresql.primary.resources.limits.memory | The maximum RAM for the primary PostgreSQL instance. | 8Gi |
| postgresql.primary.containerSecurityContext.enabled | The parameter for enabling the container security context. | true |
| postgresql.primary.containerSecurityContext.runAsNonRoot | The parameter for running the container as a non-root user. | true |
| postgresql.primary.containerSecurityContext.runAsUser | The user ID to run the container. | 12321 |
| postgresql.primary.containerSecurityContext.runAsGroup | The group ID to run the container. | 12321 |
| postgresql.primary.service.labels | Map of labels to add to the primary service. | {} |
| postgresql.primary.service.annotations | Annotations for PostgreSQL primary service. | {} |
| postgresql.primary.service.headless.annotations | Additional custom annotations for headless PostgreSQL primary service. | {} |
| postgresql.primary.pdb.create | Whether to create a PodDisruptionBudget for PostgreSQL primary instance. | false |
| postgresql.primary.pdb.minAvailable | The minimum number or percentage of PostgreSQL pods that must remain available during voluntary disruptions. | "" |
| postgresql.primary.pdb.maxUnavailable | The maximum number or percentage of PostgreSQL pods that can be unavailable during voluntary disruptions. | "" |