RustFS

Overview

RustFS is the default object storage backend for Ilum as of release 6.7.2-RC2. It is an Apache-2.0 S3-compatible object store written in Rust. The upstream chart is published at https://charts.rustfs.com and is bundled as a sub-chart of helm_aio.

Property	Value
License	Apache-2.0
Status in Ilum	Default since 6.7.2-RC2
Bundled chart	RustFS chart `0.0.99` (upstream app version `1.0.0-alpha.99`)
Bundled image	`ilum/rustfs:1.0.0-beta.1` (custom build, see below)
Default in `helm_aio`	Enabled (`rustfs.enabled=true`)
Distributed mode	Available upstream but marked "under testing"; the bundled defaults configure standalone mode with a single `PersistentVolumeClaim`
Console UX	Embedded same-origin iframe at `/rustfs/console/`
OIDC integration	Operator-supplied via `rustfs.extraEnv`; not auto-wired in 6.7.2-RC2

When to use RustFS

New Ilum installs that want the project's current default.
Existing MinIO installs that want to move to a permissively licensed storage layer (Apache-2.0 vs the MinIO server's AGPL-3.0).
Deployments that benefit from a smaller, Rust-based footprint at modest scale.

Enable RustFS as the active provider

RustFS is enabled by default in 6.7.2-RC2 and later. On a net-new install, no Helm flag is required:

helm install ilum ilum/helm_aio

On an existing MinIO install, follow the migration playbook in Migrate Between Providers. The playbook keeps MinIO running side by side until the operator explicitly acknowledges the cutover.

Why Ilum ships a custom image

The upstream RustFS console hardcodes its admin and S3 API endpoints to the host root. Embedding it in the Ilum UI as a same-origin iframe would collide with the Ilum SPA routes at /. The bundled ilum/rustfs:1.0.0-beta.1 image carries a patched console built with NEXT_PUBLIC_API_PREFIX=/rustfs/api. The patched build sends every S3 and admin request through /rustfs/api/... and strips the prefix from the SigV4 canonical string before signing. The Ilum UI's nginx reverse proxy then strips /rustfs/api/ and forwards the un-prefixed request to the RustFS server, which verifies the signature against the same un-prefixed path.

The patch is being upstreamed to github.com/rustfs/console. Once the upstream tag includes the NEXT_PUBLIC_API_PREFIX knob, Ilum will switch back to the stock upstream image.

The image build pipeline lives in ops/docker/ilum-rustfs/ in the Ilum monorepo.

Registry entry

The chart ships the following registry defaults for RustFS:

objectStorage:
  providers:
    rustfs:
      consolePath: /rustfs/console/
      consoleMode: same-origin

The consoleMode: same-origin instructs the Ilum UI to load the console iframe directly at /rustfs/console/ rather than rewriting the path. The patched console assets resolve relative to that base path.

Prometheus metrics

RustFS observability is in active development at the time of this writing. The upstream rustfs-obs crate ships OpenTelemetry-based metrics, logs, and traces. A stable /metrics Prometheus-format endpoint has not yet been documented in the upstream README, and community issues (rustfs/rustfs#796, rustfs/rustfs#1228) track the work.

Until the upstream endpoint stabilizes, operators that need Prometheus-format RustFS metrics today should run the upstream's OTel collector reference stack (Grafana, Prometheus, and Jaeger) from the RustFS project's docker-compose.yml. Configure the RUSTFS_OBS_ENDPOINT environment variable in rustfs.extraEnv to point at the collector. This integration is operator-driven; Ilum does not wire it automatically.

For Loki log shipping from the Ilum core services (which write to the ilum-files bucket on whichever provider is active), refer to the existing observability documentation. The log path is provider-agnostic.

Known limitations

Alpha upstream status. The bundled RustFS chart 0.0.99 advertises app version 1.0.0-alpha.99. Distributed mode is marked "under testing" in the upstream README. The bundled defaults run in standalone mode with a single replica and a single PVC.
No Hydra OIDC auto-wiring in 6.7.2-RC2. Operators that need OIDC against the RustFS console must supply the integration through rustfs.extraEnv directly. The integration will stabilize in a future release.
Patched console fork. Until the upstream NEXT_PUBLIC_API_PREFIX patch lands, Ilum pins a custom image. The fork is small (under 50 lines across five files plus one new file) and tracked in ops/docker/ilum-rustfs/README.md.

Disable RustFS

To roll back to MinIO or to disable RustFS in favour of an external S3 provider, set rustfs.enabled=false. The pre-upgrade hook detects existing RustFS PersistentVolumeClaims and refuses to proceed if disabling RustFS would orphan data. Follow Migrate Between Providers to disable RustFS safely.

Reference

Upstream chart on Artifact Hub: rustfs/rustfs
Upstream server source: github.com/rustfs/rustfs
Ilum image source: ops/docker/ilum-rustfs/ in the monorepo
Migration: Migrate Between Providers
Credentials: Rotate Object Storage Credentials
Helm values: Object Storage Helm Values

Overview​

When to use RustFS​

Enable RustFS as the active provider​

Why Ilum ships a custom image​

Registry entry​

Prometheus metrics​

Known limitations​

Disable RustFS​

Reference​