Installation and upgrades v1.27.0
OpenShift
For instructions on how to install Cloud Native PostgreSQL on Red Hat OpenShift Container Platform, please refer to the "OpenShift" section.
Warning
OLM (via operatorhub.io is no longer supported as an installation method for EDB Postgres® AI for CloudNativePG™ Cluster.
Installation on Kubernetes
Obtaining an EDB subscription token
Important
You must obtain an EDB subscription token to install EDB Postgres® AI for CloudNativePG™ Cluster. Without a token, you will not be able to access the EDB private software repositories.
Installing EDB Postgres® AI for CloudNativePG™ Cluster requires an EDB Repos 2.0 token to gain access to the EDB private software repositories.
You can obtain the token by visiting your EDB Account Profile. You will have to sign in if you are not already logged in.
Your account profile page displays the token to use next to Repos 2.0 Token label. By default, the token is obscured, click the "Show" button (an eye icon) to reveal it.
Your token entitles you to access one of two repositories: standard or enterprise.
- standard- Includes the operator and the EDB Postgres Extended operand images.
- enterprise- Includes the operator and the EDB Postgres Advanced and EDB Postgres Extended operand images.
Set the relevant value, determined by your subscription, as an environment variable EDB_SUBSCRIPTION_PLAN.
EDB_SUBSCRIPTION_PLAN=enterprise
then set the Repos 2.0 token to an environment variable EDB_SUBSCRIPTION_TOKEN.
EDB_SUBSCRIPTION_TOKEN=<your-token>
Warning
The token is sensitive information. Please ensure that you don't expose it to unauthorized users.
You can now proceed with the installation.
Using the Helm Chart
The operator can be installed using the provided Helm chart.
Directly using the operator manifest
Install the EDB pull secret
Before installing EDB Postgres® AI for CloudNativePG™ Cluster, you need to create a pull secret for EDB software in the postgresql-operator-system namespace.
The pull secret needs to be saved in the namespace where the operator will reside. Create the postgresql-operator-system namespace using this command:
kubectl create namespace postgresql-operator-system
To create the pull secret itself, run the following command:
kubectl create secret -n postgresql-operator-system docker-registry edb-pull-secret \ --docker-server=docker.enterprisedb.com \ --docker-username=k8s_$EDB_SUBSCRIPTION_PLAN \ --docker-password=$EDB_SUBSCRIPTION_TOKEN
Install the operator
Now that the pull-secret has been added to the namespace, the operator can be installed like any other resource in Kubernetes,
through a YAML manifest applied via kubectl.
There are two different manifests available depending on your subscription plan:
- Standard: The latest standard operator manifest.
- Enterprise: The latest enterprise operator manifest.
You can install the manifest for the latest version of the operator by running:
kubectl apply --server-side -f \ https://get.enterprisedb.io/pg4k/pg4k-$EDB_SUBSCRIPTION_PLAN-1.27.0.yaml
You can verify that with:
kubectl rollout status deployment \ -n postgresql-operator-system postgresql-operator-controller-manager
Using the cnp plugin for kubectl
You can use the cnp plugin to override the default configuration options
that are in the static manifests. 
For example, to generate the default latest manifest but change the watch namespaces to only be a specific namespace, you could run:
kubectl cnp install generate \ --watch-namespace "specific-namespace" \ > cnp_for_specific_namespace.yaml
See the "cnp plugin" documentation
for a more comprehensive example. 
Warning
If you are deploying EDB Postgres® AI for CloudNativePG™ Cluster on GKE and get an error (... failed to
call webhook...), be aware that by default traffic between worker nodes
and control plane is blocked by the firewall except for a few specific
ports, as explained in the official
docs
and by this
issue.
You'll need to either change the targetPort in the webhook service, to be
one of the allowed ones, or open the webhooks' port (9443) on the
firewall.
Details about the deployment
In Kubernetes, the operator is by default installed in the postgresql-operator-system
namespace as a Kubernetes Deployment. The name of this deployment
depends on the installation method.
When installed through the manifest or the cnp plugin, by default, it is called postgresql-operator-controller-manager.
When installed via Helm, by default, the deployment name is derived from the helm release name, appended with the suffix -edb-postgres-for-kubernetes (e.g., <name>-edb-postgres-for-kubernetes).
Note
With Helm you can customize the name of the deployment via the
fullnameOverride field in the "values.yaml" file.
You can get more information using the describe command in kubectl:
$ kubectl get deployments -n postgresql-operator-system NAME READY UP-TO-DATE AVAILABLE AGE <deployment-name> 1/1 1 1 18m
kubectl describe deploy \ -n postgresql-operator-system \ <deployment-name>
As with any Deployment, it sits on top of a ReplicaSet and supports rolling upgrades. The default configuration of the EDB Postgres® AI for CloudNativePG™ Cluster operator comes with a Deployment of a single replica, which is suitable for most installations. In case the node where the pod is running is not reachable anymore, the pod will be rescheduled on another node.
If you require high availability at the operator level, it is possible to specify multiple replicas in the Deployment configuration - given that the operator supports leader election. Also, you can take advantage of taints and tolerations to make sure that the operator does not run on the same nodes where the actual PostgreSQL clusters are running (this might even include the control plane for self-managed Kubernetes installations).
Operator configuration
You can change the default behavior of the operator by overriding some default options. For more information, please refer to the "Operator configuration" section.
Upgrades
Important
Please carefully read the release notes before performing an upgrade as some versions might require extra steps.
Upgrading EDB Postgres® AI for CloudNativePG™ Cluster operator is a two-step process:
- upgrade the controller and the related Kubernetes resources
- upgrade the instance manager running in every PostgreSQL pod
Unless differently stated in the release notes, the first step is normally done by applying the manifest of the newer version for plain Kubernetes installations, or using the native package manager of the used distribution (please follow the instructions in the above sections).
The second step is automatically triggered after updating the controller. By
default, this initiates a rolling update of every deployed PostgreSQL cluster,
upgrading one instance at a time to use the new instance manager. The rolling
update concludes with a switchover, which is governed by the
primaryUpdateStrategy option. The default value, unsupervised, completes
the switchover automatically. If set to supervised, the user must manually
promote the new primary instance using the cnp plugin for kubectl.
Rolling updates
This process is discussed in-depth on the Rolling Updates page.
Important
In case primaryUpdateStrategy is set to the default value of unsupervised,
an upgrade of the operator will trigger a switchover on your PostgreSQL cluster,
causing a (normally negligible) downtime. If your PostgreSQL Cluster has only one
instance, the instance will be automatically restarted as supervised value is
not supported for primaryUpdateStrategy. In either case, your applications will
have to reconnect to PostgreSQL.
The default rolling update behavior can be replaced with in-place updates of the instance manager. This approach does not require a restart of the PostgreSQL instance, thereby avoiding a switchover within the cluster. This feature, which is disabled by default, is described in detail below.
Spread Upgrades
By default, all PostgreSQL clusters are rolled out simultaneously, which may lead to a spike in resource usage, especially when managing multiple clusters. EDB Postgres® AI for CloudNativePG™ Cluster provides two configuration options at the operator level that allow you to introduce delays between cluster roll-outs or even between instances within the same cluster, helping to distribute resource usage over time:
- CLUSTERS_ROLLOUT_DELAY: Defines the number of seconds to wait between roll-outs of different PostgreSQL clusters (default:- 0).
- INSTANCES_ROLLOUT_DELAY: Defines the number of seconds to wait between roll-outs of individual instances within the same PostgreSQL cluster (default:- 0).
In-place updates of the instance manager
By default, EDB Postgres® AI for CloudNativePG™ Cluster issues a rolling update of the cluster every time the operator is updated. The new instance manager shipped with the operator is added to each PostgreSQL pod via an init container.
However, this behavior can be changed via configuration to enable in-place updates of the instance manager, which is the PID 1 process that keeps the container alive.
Internally, each instance manager in EDB Postgres® AI for CloudNativePG™ Cluster supports the injection of a new executable that replaces the existing one after successfully completing an integrity verification phase and gracefully terminating all internal processes. Upon restarting with the new binary, the instance manager seamlessly adopts the already running postmaster.
As a result, the PostgreSQL process is unaffected by the update, refraining from the need to perform a switchover. The other side of the coin, is that the Pod is changed after the start, breaking the pure concept of immutability.
You can enable this feature by setting the ENABLE_INSTANCE_MANAGER_INPLACE_UPDATES
environment variable to 'true' in the
operator configuration.
The in-place upgrade process will not change the init container image inside the Pods. Therefore, the Pod definition will not reflect the current version of the operator.
Compatibility among versions
EDB Postgres® AI for CloudNativePG™ Cluster follows semantic versioning. Every release of the operator within the same API version is compatible with the previous one. The current API version is v1, corresponding to versions 1.x.y of the operator.
In addition to new features, new versions of the operator contain bug fixes and stability enhancements. Because of this, we strongly encourage users to upgrade to the latest version of the operator, as each version is released in order to maintain the most secure and stable Postgres environment.
EDB Postgres® AI for CloudNativePG™ Cluster currently releases new versions of the operator at least monthly. If you are unable to apply updates as each version becomes available, we recommend upgrading through each version in sequential order to come current periodically and not skipping versions.
The release notes page contains a detailed list of the changes introduced in every released version of EDB Postgres® AI for CloudNativePG™ Cluster, and it must be read before upgrading to a newer version of the software.
Most versions are directly upgradable and in that case, applying the newer manifest for plain Kubernetes installations or using the native package manager of the chosen distribution is enough.
When versions are not directly upgradable, the old version needs to be removed before installing the new one. This won't affect user data but only the operator itself.
Upgrading to 1.27.0 or 1.26.1
Important
We strongly recommend that all EDB Postgres® AI for CloudNativePG™ Cluster users upgrade to version 1.27.0, or at least to the latest stable version of your current minor release (e.g., 1.26.1).
Version 1.27 introduces a change in the default behavior of the
liveness probe: it now enforces the
shutdown of an isolated primary
within the livenessProbeTimeout (30 seconds).
If this behavior is not suitable for your environment, you can disable the isolation check in the liveness probe with the following configuration:
spec: probes: liveness: isolationCheck: enabled: false
Upgrading to 1.26 from a previous minor version
Important
We strongly recommend that all EDB Postgres® AI for CloudNativePG™ Cluster users upgrade to version 1.26.1, or at a minimum, to the latest stable version of your current minor release (for example, 1.25.x).
Warning
Due to changes in the startup probe for the manager component
(#6623),
upgrading the operator will trigger a restart of your PostgreSQL clusters,
even if in-place updates are enabled (ENABLE_INSTANCE_MANAGER_INPLACE_UPDATES=true).
Your applications will need to reconnect to PostgreSQL after the upgrade.
Deprecation of backup metrics and fields in the Cluster .status
With the transition to a backup and recovery agnostic approach based on CNP-I
plugins in EDB Postgres® AI for CloudNativePG™ Cluster, which began with version 1.26.0 for Barman Cloud, we
are starting the deprecation period for the following fields in the .status
section of the Cluster resource:
- firstRecoverabilityPoint
- firstRecoverabilityPointByMethod
- lastSuccessfulBackup
- lastSuccessfulBackupByMethod
- lastFailedBackup
The following Prometheus metrics are also deprecated:
- cnp_collector_first_recoverability_point
- cnp_collector_last_failed_backup_timestamp
- cnp_collector_last_available_backup_timestamp
Warning
If you have migrated to a plugin-based backup and recovery solution such as Barman Cloud, these fields and metrics are no longer synchronized and will not be updated. Users still relying on the in-core support for Barman Cloud and volume snapshots can continue to use these fields for the time being.
Under the new plugin-based approach, multiple backup methods can operate simultaneously, each with its own timeline for backup and recovery. For example, some plugins may provide snapshots without WAL archiving, while others support continuous archiving.
Because of this flexibility, maintaining centralized status fields in the
Cluster resource could be misleading or confusing, as they would not
accurately represent the state across all configured backup methods.
For this reason, these fields are being deprecated.
Instead, each plugin is responsible for exposing its own backup status information and providing metrics back to the instance manager for monitoring and operational awareness.
Declarative Hibernation in the cnp plugin
In this release, the cnp plugin for kubectl transitions from an imperative
to a declarative approach for cluster hibernation.
The hibernate on and hibernate off commands are now convenient shortcuts
that apply declarative changes to enable or disable hibernation.
The hibernate status command has been removed, as its purpose is now
fulfilled by the standard status command.
Upgrading to 1.25 from a previous minor version
Warning
Every time you are upgrading to a higher minor release, make sure you go through the release notes and upgrade instructions of all the intermediate minor releases. For example, if you want to move from 1.23.x to 1.25, make sure you go through the release notes and upgrade instructions for 1.24 and 1.25.
No changes to existing 1.24 cluster configurations are required when upgrading to 1.25.
Upgrading to 1.24 from a previous minor version
From Replica Clusters to Distributed Topology
One of the key enhancements in EDB Postgres® AI for CloudNativePG™ Cluster 1.24.0 is the upgrade of the replica cluster feature.
The former replica cluster feature, now referred to as the "Standalone Replica Cluster," is no longer recommended for Disaster Recovery (DR) and High Availability (HA) scenarios that span multiple Kubernetes clusters. Standalone replica clusters are best suited for read-only workloads, such as reporting, OLAP, or creating development environments with test data.
For DR and HA purposes, EDB Postgres® AI for CloudNativePG™ Cluster now introduces the Distributed Topology strategy for replica clusters. This new strategy allows you to build PostgreSQL clusters across private, public, hybrid, and multi-cloud environments, spanning multiple regions and potentially different cloud providers. It also provides an API to control the switchover operation, ensuring that only one cluster acts as the primary at any given time.
This Distributed Topology strategy enhances resilience and scalability, making it a robust solution for modern, distributed applications that require high availability and disaster recovery capabilities across diverse infrastructure setups.
You can seamlessly transition from a previous replica cluster configuration to a
distributed topology by modifying all the Cluster resources involved in the
distributed PostgreSQL setup. Ensure the following steps are taken:
- Configure the externalClusterssection to include all the clusters involved in the distributed topology. We strongly suggest using the same configuration across allClusterresources for maintainability and consistency.
- Configure the primaryandsourcefields in the.spec.replicastanza to reflect the distributed topology. Theprimaryfield should contain the name of the current primary cluster in the distributed topology, while thesourcefield should contain the name of the cluster eachClusterresource is replicating from. It is important to note that theenabledfield, which was previously set totrueorfalse, should now be unset (default).
For more information, please refer to the "Distributed Topology" section for replica clusters.