Self Host Sentry using Helm

Self Hosted Error Tracking and Reporting using Sentry Kubernetes and Helm

—

Published at Oct 26, 2023

Intro

Sentry is an incredibly nice error tracking tool; it can significantly increase the speed of bug fixing and debugging. It also offers a bunch of other features. You should also check out their service

Since I like to know how the stuff works and willing to take it appart; I would always prefer to self-host if I can. This also gives me more comfort about controlling my own data which by the way also aids GDPR compliance (though this is also possible using Sentry's service directly).

Fortunately, there still is a Helm chart. 'Still', because for example: the deprecated Posthog chart, but also the originally (officially maintained?) sentry chart seems deprecated now.

Setup

I prepared a script that will:

Configure an ingress with a cluster issuer annotation to serve under a specific $HOSTNAME
Configure a Postgres password
Enable session recordings and its interface

Installation

Use the following script to install Sentry:

./install_sentry_microk8s.sh \
  K8_NAMESPACE="<installation-namespace>" \
  RELEASE_NAME="<release-name>" \
  SENTRY_HOSTNAME="<...>" \
  SENTRY_HOSTNAME="<...>" \
  POSTGRES_PASSWORD="<...>" \
  SMTP_USERNAME="<...>" \
  SMTP_PASSWORD="<...>" \
  SMTP_PORT="<...>" \
  SMTP_FROM_EMAIL="<...>" \
  SENTRY_ADMIN_EMAIL="<...>" \
  SENTRY_ADMIN_PASSWORD="<...>"

I found out about having to set and update the admin Postgres password using a secret; in this Github issue. That's why we create a simple secret for the Postgres-password here:

apiVersion: v1
kind: Secret
metadata:
  name: postgres
  namespace: $K8_NAMESPACE
stringData:
  postgres-password: "$POSTGRES_PASSWORD"

For enabling the session feature and directly setting the Python config, I read over here and here and here, ending up with:

config:
  sentryConfPy: |
    SENTRY_FEATURES["organizations:session-replay"] = True
    SENTRY_FEATURES["organizations:session-replay-ui"] = True

Ingress setup follows a pretty standard procedure:

nginx:
  ingress:
    annotations:
      cert-manager.io/cluster-issuer: "letsencrypt-prod"
    enabled: true
    hostname: $SENTRY_HOSTNAME
    ingressClassName: "public"
    tls: true
    extraTls:
      - hosts:
          - $SENTRY_HOSTNAME
        secretName: sentry-tls

As in some of my other scripts, I like to assume the cluster issuer is named "letsencrypt-prod". To me, that's a reasonable sacrifice for adding fewer inputs ;).

Also, to get the install to succeed I needed to increase the hooks.activeDeadlineSeconds; otherwise, it would time out and the installation would fail.

hooks:
  activeDeadlineSeconds: 3500

Open Issues

Currently, I still experience one of the metrics services failing. I'm not sure about the impact yet, but tracking seems to work just fine:

microk8s kubectl logs sentry-snuba-metrics-consumer -n sentry
snuba.clickhouse.errors.ClickhouseWriterError: Method write is not supported by storage Distributed with more than one shard and no sharding key provided (version 21.8.13.6 (official build))

seems like an issue with my storage provisioning possibly; no impact seen so-far.

Keep Reading

All Posts

Oct 8, 2025
•
02 min read

Self-Hosted n8n on Kubernetes (Helm chart)

Minimal, repeatable setup to run n8n with TLS behind nginx ingress using the 8gears Helm chart.

byTim Schupp

Oct 1, 2025
•
02 min read

Self-Hosted Uptime Monitoring on Kubernetes with Uptime-Kuma

Tiny guide to deploy Uptime-Kuma on a self-hosted Kubernetes cluster using a maintained Helm chart.

byTim Schupp

Oct 1, 2025
•
01 min read

WordPress on Kubernetes with TrueCharts (short guide)

Set up WordPress on a self-hosted Kubernetes cluster using the TrueCharts Helm chart.

byTim Schupp

All Posts