Delivery
You receive Valinor through the Replicated proxy registry. All container images are pulled through a single authenticated endpoint.| Item | Value |
|---|---|
| Registry | registry.replicated.com |
| Username | Your email address |
| Password | Your license ID (provided by Context) |
registry.replicated.com- Helm chartproxy.replicated.com- container images*.amazonaws.com- S3, DynamoDB, SQS, SSM, STS- authentication endpoints - if using WorkOS auth
Prerequisites
Kubernetes cluster- Kubernetes 1.25+
- External Secrets Operator with ClusterSecretStore CRD
- AWS Load Balancer Controller
gp3StorageClass
- S3 bucket, DynamoDB table, SQS queue
- IAM role for IRSA
- SSM Parameter Store with secrets under
/valinor/:WORKOS_API_KEY,WORKOS_CLIENT_ID,WORKOS_COOKIE_PASSWORDNEXT_PUBLIC_WORKOS_REDIRECT_URI,AI_STREAMING_WORKOS_REDIRECT_URIANTHROPIC_API_KEY/OPENAI_API_KEY/GOOGLE_API_KEY(as needed)
app.<your-domain>andapi.<your-domain>- TLS via ACM or cert-manager
Install
1. Log in to the registry
2. Create the image pull secret
3. Run preflight checks (recommended)
4. Install the chart
5. Verify
Configuration
Create avalues-override.yaml for environment-specific settings.
Internal-only ingress
us-west-2)
valinor, update service URLs to match:
| Service | Suffix |
|---|---|
| PostgreSQL | -supabase-db |
| Redis | -redis |
| Kong API Gateway | -supabase-kong |