Operating - MongoDB

You configure Ditto’s MongoDB connection and tune database performance through environment variables and config files.

Overview

Each Ditto microservice that persists data connects to MongoDB. If you use a dedicated MongoDB instance instead of the bundled container, you control the connection through environment variables.

Configuration

Connection settings

Set these environment variables to configure the MongoDB connection:

Passwordless authentication via AWS IAM

Since Ditto 3.6.0, you can authenticate with AWS IAM instead of using username/password credentials.

To enable this:

1. Configure your Kubernetes service account with the role ARN via the annotation eks.amazonaws.com/role-arn.
2. Configure Ditto’s services to assume that role during MongoDB authentication.

Environment variables:

Helm chart: Configure the serviceAccount key to annotate the Kubernetes service account, and the dbconfig key for each Ditto service in your values.yaml.

Tuning

Background aggregation queries

Ditto runs background aggregate queries against MongoDB to clean up data based on current database load. These queries primarily target snapshot collections (things_snaps, policies_snaps, connections_snaps).

MongoDB 5

The default settings work well. Aggregation queries run quickly without excessive disk read operations.

MongoDB 6+

In MongoDB 6, the same aggregation queries can slow down significantly with large snapshot stores, causing increased disk read IOPS. Enable additional indexes to restore performance:

Environment variables:

MONGODB_READ_JOURNAL_SHOULD_CREATE_ADDITIONAL_SNAPSHOT_AGGREGATION_INDEX_PID_ID=true
MONGODB_READ_JOURNAL_SHOULD_CREATE_ADDITIONAL_SNAPSHOT_AGGREGATION_INDEX_PID_SN=true
MONGODB_READ_JOURNAL_SHOULD_CREATE_ADDITIONAL_SNAPSHOT_AGGREGATION_INDEX_PID_SN_ID=true

Helm values (example for the things service):

things:
  config:
    readJournal:
      indexes:
        createSnapshotAggregationIndexPidId: true
        createSnapshotAggregationIndexPidSn: true
        createSnapshotAggregationIndexPidSnId: true

Background cleanup

Ditto deletes unnecessary events and snapshots in the background according to database load. This cleanup is available for Policies, Things, and Connectivity services.

Key configuration parameters:

cleanup {
  enabled = true
  enabled = ${?CLEANUP_ENABLED}

  # How long to keep events/snapshots before cleanup
  history-retention-duration = 3d
  history-retention-duration = ${?CLEANUP_HISTORY_RETENTION_DURATION}

  # Pause between cleanup runs
  quiet-period = 5m
  quiet-period = ${?CLEANUP_QUIET_PERIOD}

  # How often to issue cleanup credits
  interval = 3s
  interval = ${?CLEANUP_INTERVAL}

  # Max DB latency before pausing cleanup
  timer-threshold = 150ms
  timer-threshold = ${?CLEANUP_TIMER_THRESHOLD}

  # Credits issued per interval
  credits-per-batch = 3
  credits-per-batch = ${?CLEANUP_CREDITS_PER_BATCH}

  # Snapshots scanned per query
  reads-per-query = 100
  reads-per-query = ${?CLEANUP_READS_PER_QUERY}

  # Documents deleted per credit
  writes-per-credit = 100
  writes-per-credit = ${?CLEANUP_WRITES_PER_CREDIT}

  # Whether to delete the final "deleted" snapshot
  delete-final-deleted-snapshot = false
  delete-final-deleted-snapshot = ${?CLEANUP_DELETE_FINAL_DELETED_SNAPSHOT}
}

By default, the retention duration is 0d, meaning no history is kept. To use Ditto’s history capabilities, adjust history-retention-duration accordingly.

You can also manage background cleanup at runtime through DevOps piggyback commands.

Further reading

• Operating - Configuration
• Operating - DevOps Commands
• Operating - Monitoring & Tracing