This guide covers the step-by-step installation and configuration of SpiceDB for FlowX deployments, including operator installation, database setup, and service integration.
spicedb
secret with the required credentials:
openssl rand -base64 32
extraEnvVarsMultipleSecretsCustomKeys
:
spicedb
(created in Step 3)preshared_key
key in that secretFLOWX_LIB_CASCLIENT_SPICEDB_TOKEN
in FlowX service podspreshared_key
value in the SpiceDB secret must match the FLOWX_LIB_CASCLIENT_SPICEDB_TOKEN
in all FlowX microservices.Check SpiceDB Pods
Test Connectivity
Check FlowX Integration
Variable | Required | Description | Default Value | Notes |
---|---|---|---|---|
SPICEDB_DATASTORE_ENGINE | ✅ | Database engine type | postgres | Only PostgreSQL is supported in FlowX |
SPICEDB_DATASTORE_CONN_URI | ✅ | PostgreSQL connection string | postgres://postgres:password@postgresql:5432/spicedb?sslmode=disable | Use Kubernetes Secret - include sslmode=disable for internal cluster communication |
SPICEDB_GRPC_PRESHARED_KEY | ✅ | Pre-shared key for gRPC authentication | your-secure-key-here | This becomes FLOWX_LIB_CASCLIENT_SPICEDB_TOKEN in FlowX services |
Variable | Required | Description | Default Value | Notes |
---|---|---|---|---|
SPICEDB_DISPATCH_CLUSTER_ENABLED | ⚠️ | Enable cluster mode for multiple replicas | true | Required for production deployments with multiple replicas |
SPICEDB_LOG_LEVEL | ⚠️ | Logging verbosity level | debug | Use debug for troubleshooting, info for production |
datastore_uri
with your PostgreSQL credentials and hostnamepreshared_key
for your deployment