Helm 3 Arrives to Boost the Way to Deploy Applications on Kubernetes

It's been three years since Helm's first release and it is, undoubtedly, the de-facto way of deploying applications in Kubernetes. This is thanks to its simplicity and ease of use and its ability to manage upgrades and rollbacks with ease.

Helm 3 is further evidence the community is continuing to advance and mature. Its new features and improvements make Helm charts even easier to manage, and offers the most secure way to move applications to production. Read on for the details.

Say goodbye to Tiller

Helm is comprised of two parts: Helm (the client) and Tiller (the server). In previous versions, when you initialized Helm running “helm init”, Tiller was installed automatically. 

Tiller had an important role in clusters that were shared across different teams as it allowed multiple operators to interact with the same set of releases at the same time.

When role-based access controls (RBAC rules) came along with the release of Kubernetes v.1.6, the use of Tiller in a production scenario became more difficult due to the multiple security policies that you can set for your cluster. Take a look at the numerous pre-configurations you should do in order to install and configure Helm and Tiller to realize how RBAC rules complicated the management in a multi-tenant cluster.

Based on user feedback, the Helm team removed Tiller in the latest release. They found that fetching the information from the Kubernetes API server, rendering the charts client-side, and storing the record of the installation in Kubernetes was the best way to collect Helm release information (instead of using Tiller as a central hub). 

With Tiller gone, Helm’s security relies on your kubeconfig file where cluster administrators define user’s roles and permissions.

Open Container Initiative: Removing Chart Repository Limitations for Production Environments 

Helm 3 also provides new ways of managing chart repositories. For a long time, Docker Registry has been the de-facto toolset to store and deliver Docker images. Many cloud vendors also offered different versions of the Docker Registry that implemented security features to try and mitigate some of the more common chart repository limitations:

Chart repositories usually take a long time to abstract the security implementations needed for a production environment.

Not every chart repository includes tools for signing and verifying the origin and integrity of a chart.

Using a unique index file for metadata information makes searching and fetching charts hard, and makes it more difficult to manage security in multi-tenant scenarios.

Although it is still experimental, the Open Container Initiative may solve these limitations by adding login support and other features that will be essential for managing charts with Helm 3.

Try Bitnami charts with Helm 3

The Bitnami catalog has already been tested and validated to work with Helm 2 and Helm 3 across the major Kubernetes platforms.

Bitnami runs daily tests on its entire application catalog to make sure that all solutions can be deployed successfully without issues in any platform.

As one of the largest maintainers of Helm charts (currently 60), we have focused our efforts on delivering maintained, secure, and production-ready charts.

Why don’t give it a try? Install Helm 3 in your cluster now and select any of Bitnami charts from our GitHub repository to test its new features!


For more information about Helm 3 new features and changes, read the official announcement or refer to Helm FAQ. 

Start Deploying your PHP Applications to Production with Bitnami LAMP Production-Ready

LAMP is one of the most popular open source web service stacks used for developing dynamic websites and web applications. It is comprised of a set of well-known components that help developers create their applications quickly. LAMP is so prominent in the community because it provides a complete framework for creating high-performance web applications that saves you hours of coding.

Its components include a Linux operating system, an Apache HTTP Server, a MySQL relational database, and PHP as the programming language. When launching the Bitnami LAMP stack, you will get a ready-to-run package that includes all of the components above. 

LAMP is an essential component of every developer’s tool kit.  But what happens when you need to move your applications from development to production environments? This is where Bitnami can help. Bitnami has recently released the LAMP Production-Ready stack, which provides both high-availability and security for mission-critical use cases.  

In this blog post, you will learn about the main features of this production-ready stack and the most common use cases that this stack should be used for. 

Take the Performance and Security of Your PHP-based Applications to the Next Level

The LAMP Production-Ready architecture was designed to address your production needs. It adds an extra layer of security and ensures high-availability for your PHP applications even in the most traffic demanding environments.  The following are the features that you will benefit from when deploying this solution: 

• High-Availability architecture with two availability zones in the AWS regions to ensure that your cluster can continue working if a node (or a whole AWS zone) goes down.
• Replication model designed to distribute workloads across multiple application services.  
• Elastic Load Balancer (ELB) is added to distribute HTTP and HTTPS requests across the application instances, ensuring the maximum performance with a high number of connections.
• Virtual Private Cloud (VPC)with public and private subnets. In both public and private subnets, an Auto Scaling Group is configured in each node to ensure dynamic, on-demand horizontal scaling. In addition to this, the EC2  instances that host the application servers are isolated in private subnets. Inbound traffic is allowed via Elastic Load Balancer (ELB)  while outbound traffic is managed through a NAT Gateway. This configuration increases the security of the cluster dramatically.
• Data and code (Aurora MySQL database and application servers) are separated in different instances improving the safety and access control. 
• Database cache performance is enhanced with an ElastiCache cluster, boosting the performance of the entire deployment. Also, Amazon Aurora provides auto-backup, geographic redundancy, and automatic replication, making it perfect for production environments. 

As you can see in the diagram below, the load balancer manages all user’s requests. It distributes the workload through the different application instances hosted in a private subnet. This configuration makes your application adaptable to the most demanding scenarios, even when a node is down, or if there are concurrent connections at any one time.

LAMP Production-Ready architecture diagram

When should you be using the Bitnami LAMP production-ready stack? 

As a developer, you probably have been in multiple situations where your applications required high-availability and automatic horizontal scaling. These are some examples of websites or applications that the Bitnami LAMP Production-Ready stack addresses perfectly: 

• PHP-based news or social sites: In this case, your application has high traffic and requires both high-availability, distributed workloads, and scalability. This is the typical scenario of WordPress and Drupal websites or social networks such as Diaspora. 
• PHP-based e-commerce, shopping, or ticketing web applications: This kind of applications usually require reliability, geographic redundancy, failover, and data backups. That happens, for example, to shops based on Magento, Prestashop, or Woocommerce. 
• Custom web application and REST/HTTP/SOAP API that needs an extra layer of security, access control, availability, and scalability. 

What’s next?

Try the LAMP Production-Ready Cloud Formation Template (CFT) directly from the AWS Marketplace to see how it can help you face the most critical and high-demanding environments. 

Once you click  “Launch” in the AWS Marketplace listing, you will be redirected to the CloudFormation Management Console. From there, you only need to configure some parameters of the template such as the network,  Linux bastion, and ElastiCache configuration. Then, click “Create” and wait for the template to deploy all the required resources in the AWS servers. In less than an hour, your LAMP Production-Ready stack will be available and ready to use.
Follow this detailed get-started guide to complete the process. Once you have the solution deployed, you will be able to install your custom application and run it directly into a production environment! 

Launch It Now!

Take Your Website to the Next Level with WordPress Production-Ready from Bitnami and Automattic - Now Available on the AWS Marketplace

Webinar - " Achieve Your Website Goals with the Official WordPress Image for the Cloud" - August 14th at 10 am PST - Register Now

_________________________________________________________________________________

On January 16, 2019, we announced our partnership with Automattic, the company behind WordPress.com, to create an official WordPress image for the AWS cloud.

Today, all of the different flavors of Bitnami WordPress images in the AWS Marketplace have been re-published as official images certified by Bitnami and Automattic.

Along with updating our images, we have also released a new Production-Ready WordPress image that is designed to handle all of your production environment needs.

WordPress Production-Ready is a pre-configured CloudFormation template designed for production environments. Its architecture spans two availability zones in the AWS region and auto-scaling group configured in each node to ensure high-availability and horizontal scaling.

Maximum performance is maintained by a replication model for distributing workloads across multiple WordPress instances, Elastic Load Balancing to distribute requests across the nodes, EFS for persisting files and ElastiCache cluster with Memcached for caching database queries to Amazon Aurora.

With WordPress Production-Ready Certified by Bitnami and Automattic, your company can rest assured that the application will withstand the traffic and scaling required for your popular site with the following features:

• High-availability architecture with two availability zones and auto-scaling group configured in each node to ensure dynamic horizontal scaling.
• Public subnets configured to allow EC2 Instances to act as bastion hosts for inbound traffic and Managed NAT Gateways allow outbound traffic to WordPress instances, following the AWS security guidelines.
• Always up-to-date and secure; includes the latest available version of WordPress, PHP, and Apache.

Get started with the WordPress Production-Ready Certified by Bitnami and Automattic today!

Is there anything else new in the updated WordPress listings by Bitnami and Automattic?

Yes, there is!

All of our WordPress images for AWS now include the Automattic Jetpack plugin by default.

Jetpack, one of the most popular plugins for WordPress, is the most powerful way to design, protect, and manage multiple WordPress websites. Jetpack is powered by the folks behind WordPress.com, which means you’ve got the infrastructure to handle billions of pageviews behind your sites, plus world-class 24/7 support.

Pick the WordPress image that works for you:

We offer many different WordPress images to suit the many different needs of our users. Pick the one that works best for you, and get started today.

• WordPress Production-Ready Certified by Bitnami and Automattic 
• WordPress Certified by Bitnami and Automattic
• WordPress Multisite Certified by Bitnami and Automattic
• WordPress with NGINX and SSL Certified by Bitnami and Automattic
• WordPress with Amazon RDS for MariaDB Certified by Bitnami & Automatic
• WordPress with Amazon Aurora Certified by Bitnami and Automattic
• WordPress with NGINX container Solution
• WordPress Container Solution

Unsure of which image to choose for your WordPress use case? Reach out to our support team through our community support forum with the details of what you are trying to accomplish. Our team will be happy to guide you in the right direction!

Want to learn more about how you can use the WordPress Production-Ready Certified by Bitnami and Automattic to create the website of your dreams on AWS? Join us for a live webinar with the Automattic and AWS teams on August 14th at 10 am PST. Register now!