The latest helm chart
dgraph-0.0.7 provides endpoints with:
- service type of
LoadBalancer and we added support for service annotations needed for things like external DNS and load balancer configurations
- ingress resource to configure routes back to the service based on incoming virtual hostname, http url path, and either port
443. We tested this on
ingress-nginx (gke, eks),
For security best practices with backend databases, I recommend not exposing alpha endpoint to public internet unless restricted to a limited list of IP addresses.
As an alternative, you can use annotations available for either an ingress or a loadbalancer (dependent on provider for external
LoadBalancer or ingress controller options) to use an internal private IP for an endpoint. Then you would use either a bastion jump host (ssh) or VPN to connect to internal private network to access the private endpoint.