Installation
Add the Formal Helm repository:- Install the CRDs (FormalResource, FormalListener, FormalNativeUser)
- Create a ServiceAccount with the necessary RBAC permissions
- Deploy the operator
Configuration
| Parameter | Default | Description |
|---|---|---|
formalAPIKey | "" | Formal API key (required) |
image.tag | latest | Docker image tag |
image.pullPolicy | Always | Image pull policy |
replicaCount | 1 | Number of operator replicas |
pullWithCredentials | false | Set to true if using the ecr-cred chart to fetch ECR credentials |
resources | See below | CPU/memory requests and limits |
metricsPort | 8080 | Bind port for the metrics server |
Non-AWS Environments
If your cluster cannot pull from ECR directly, deploy theecr-cred Helm chart first, then set pullWithCredentials=true: