Bring your towel and join one of the fastest growing data communities. Welcome to our second-generation open source orchestration platform, a completely rethought approach to dataflow automation.

Prefect Community

Capture d’écran 2022-07-19 à 11.29.01.png

Hi
I have a question regarding prefect running on kubernetes through <https://github.com/PrefectHQ/server/tree/master/helm/prefect-server|helm template> deployment.
I have troubleshooting connecting the prefect UI with the apollo server. I use a clusterIp service to be able to communicate between the pods.
I’m running a service on top of apollo with cluster IP `10.1.70.59` . When I exec the ui pod I can succesfully reach `curl 10.1.70.59:4200/graphql`
However within the Prefect UI I can’t connect to the URL. Any idea why ?

Because it's your browser that makes those requests, thus from outside of your cluster

see the values.yaml file for the helm chart: <https://github.com/PrefectHQ/server/blob/0b64bfd8e6dfc53cddc057575322b3520f1884ea/helm/prefect-server/values.yaml#L272-L276>

Hmm same result with `apolloApiUrl: <http://localhost:4200/graphql>` or either `apolloApiUrl: <http://10.1.70.59:4200/graphql>`
From what I understood with your message the request is made through the browser (how could it even work with localhost ??)  but it would be better to make the request within the cluster with private ips.
The thing is I would be able to reach the apollo with a public url based on my domain but we protect any domain URL with our google SSO (that means that the UI is not authorized to make the request to apollo server)

If you check your browser developer console, you'll see that the browser is making requests to &lt;apolloApiUrl&gt;. This means your api should be exposed to the public internet for the UI to be able to work. If you only temporarily need the UI, you could port-forward all traffic to/from graphql to your localhost, but it's of course not an ideal solution

Ok indeed not ideal .. Is it a feature planned in prefect side to support communication between ui and server through a kubernetes services ?

As they are releasing prefect 2.0 next week (<https://prefect-community.slack.com/archives/CKNSX5WG3/p1658270821320139>), I don't think many features are still coming for prefect 1

Hmm interesting !! :thumbsup:
Is there any helm template provided ? Or at least a docker image ?

<https://github.com/PrefectHQ/prefect-helm>

incredible thanks <@U0321ASKMN0> i will give a try for sure

<@U0321ASKMN0> Communication between API and Agent is still on the public internet with a public URL between api &amp; agent ?

Yes, I assume that authentication/authorization is not on the roadmap for server, as they provide that through prefect cloud ('premium' version)