Skip to content

Helm Chart Release Notes

This page lists breaking changes and notable updates per Helm chart release. For a decode of ivaap -v output, see IVAAP All-in-one Binary — Diagnostics.

Chart v2026.1.0-1

Migration Notes

Action required for existing deployments upgrading from 2025.1.x

This release contains multiple breaking values-schema changes. Review and migrate your values.yaml (and any GitOps overlays) before upgrading.

1. dataimportnode relocated from dataNodes to coreNodes

dataimportnode is now a core node — it ships in the main container image tar file and will be used for every deployment instead of as an optional connector. If your existing values has:

ivaapBackendNodes:
  dataNodes:
    dataimportnode:
      enabled: true

Remove that block. The node is now managed under ivaapBackendNodes.coreNodes.dataimportnode and is no longer toggled via the enabled-datanode loop. Leaving the stale dataNodes.dataimportnode entry will fail the upgrade.

2. LM_LICENSE_FILE now references a FlexNet license server

The LM_LICENSE_FILE value under secrets.k8sSecrets.ivaap-license-secret is no longer a raw FEATURE-line content. It must now hold a FlexNet port@host reference (e.g. 27000@your-flex-server.example.com) that resolves to your FlexNet license server. The chart, adminserver, and backend nodes now check out feature entitlements at runtime instead of parsing an embedded license blob.

SLB recommends running the FlexNet license server on a separate host. When a same-host loopback server is unavoidable, loopback inputs (127.0.0.1, localhost, ::1) are handled via a synthesized pod-facing hostname (example: ivaap-flexnet.local) injected into /etc/hosts — do not write loopback literals into LM_LICENSE_FILE directly.

3. Chart version scheme changed

Chart.yaml now uses calendar versioning: version: 2026.1.0-x and the separate appVersion field has been removed. helm list and helm history output will show 2026.1.0-x in the chart version column with no appVersion suffix.

New Features

  • FlexNet license server integration — runtime feature checkout via port@host instead of embedded license content
  • Certbot support under environment.certbot for automated TLS certificate management via cert-manager ClusterIssuer (requires environment.TLSSecret.enabled: true)
  • New adminserver licensing env vars: IVAAP_LICENSING_FEATURE_DISPLAY_NAME_CONFIG, IVAAP_AUTO_CHECKOUT_SESSION_FEATURES, IVAAP_AVOID_CHECKOUT_SERVER_LICENSING_FEATURE

Improvements

  • dataimportnode promoted to a core node — always present in cluster topology, no longer gated by connector tarball delivery
  • License secret now mounted on adminserver only; backend nodes no longer mount the license secret directly

Bug-Fix

  • Fixed IVAAP_JVM_MAX_MEMORY defaults logic
  • Corrected IVAAP_SERVICES_TIME_OUT default placement

Chart v1.2.0

Migration Notes

Action required for existing deployments

Base64 encoding for secrets is now optional.

If you are upgrading from a previous version using base64 encoded secrets, you must explicitly set the following to preserve previous behavior and avoid breaking existing deployments: 

secrets:
  base64EncodedValues: true

New Features

  • Added flag to make base64 encoding for secrets optional
  • Updated deployment examples to include plain text secret examples
  • Updated NGINX reverse proxy to include HTTP config for testing purposes
  • Updated adminserver image with embedded Circle of Trust script intended for automated deployment script
  • Added direct support for NFS and SMB data connectivity

Improvements

  • Refactored and stream-lined backend node PVs/PVCs

Bug-Fix

  • Fixed the logging path for adminserver pod's persisted logs in k3s