Skip to content

Commit

Permalink
feat(flux): big brain operator
Browse files Browse the repository at this point in the history
  • Loading branch information
@buroa
buroa committed Jan 9, 2025
1 parent 06e3b4a commit 50505b6
Show file tree
Hide file tree
Showing 99 changed files with 361 additions and 300 deletions.
2 changes: 1 addition & 1 deletion .github/workflows/flux-diff.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -52,7 +52,7 @@ jobs:
--strip-attrs "helm.sh/chart,checksum/config,app.kubernetes.io/version,chart"
--limit-bytes 10000
--all-namespaces
--sources "k8s-gitops"
--sources "flux-system"
--output-file diff.patch
- name: Generate Diff
Expand Down
47 changes: 9 additions & 38 deletions .taskfiles/bootstrap/Taskfile.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,20 +1,15 @@
---
version: '3'

vars:
BOOTSTRAP_RESOURCES_DIR: '{{.ROOT_DIR}}/.taskfiles/bootstrap/resources'

tasks:

kubernetes:
desc: Bootstrap a Talos Kubernetes cluster backed by flux, sops, and rook
prompt: Bootstrap a Talos Kubernetes cluster ... continue?
desc: Bootstrap Talos
prompt: Bootstrap Talos Cluster?
cmds:
- task: etcd
- task: kubeconfig
- task: apps
- task: rook
- task: flux
preconditions:
- talosctl config info >/dev/null 2>&1
- test -f {{.TALOS_DIR}}/clusterconfig/talosconfig
Expand All @@ -28,43 +23,19 @@ tasks:
cmd: talosctl kubeconfig --nodes {{.TALOS_CONTROLLER}} --force {{.KUBERNETES_DIR}}

apps:
internal: true
desc: Bootstrap Apps
prompt: Bootstrap apps into the Talos cluster?
cmds:
- until kubectl wait --for=condition=Ready=False nodes --all --timeout=10m; do sleep 10; done
- until kubectl wait nodes --for=condition=Ready=False --all --timeout=10m; do sleep 5; done
- op run --env-file {{.KUBERNETES_DIR}}/bootstrap/bootstrap.env --no-masking -- minijinja-cli {{.KUBERNETES_DIR}}/bootstrap/apps/templates/resources.yaml.j2 | kubectl apply --server-side --filename -
- helmfile --quiet --file {{.KUBERNETES_DIR}}/bootstrap/apps/helmfile.yaml apply --skip-diff-on-install --suppress-diff
- until kubectl wait --for=condition=Ready nodes --all --timeout=10m; do sleep 10; done
env:
KUBERNETES_DIR: '{{.KUBERNETES_DIR}}'
preconditions:
- test -f {{.KUBERNETES_DIR}}/bootstrap/apps/helmfile.yaml

rook:
internal: true
cmds:
- minijinja-cli {{.BOOTSTRAP_RESOURCES_DIR}}/wipe-rook.yaml.j2 | kubectl apply --server-side --filename -
- until kubectl --namespace default get job/wipe-rook &>/dev/null; do sleep 5; done
- kubectl --namespace default wait job/wipe-rook --for=condition=complete --timeout=5m
- stern --namespace default job/wipe-rook --no-follow
- kubectl --namespace default delete job wipe-rook
- helmfile --quiet --file {{.KUBERNETES_DIR}}/bootstrap/apps/helmfile.yaml destroy --selector release=wipe-rook
env:
FLUX_GITHUB_PUBLIC_KEYS:
sh: curl -fsSL https://api.github.com/meta | jq --raw-output '"github.com "+.ssh_keys[]'
MODEL: SAMSUNG_MZQL23T8HCLS-00A07
NODE_COUNT:
sh: talosctl config info --output json | jq --raw-output '.nodes | length'
preconditions:
- test -f {{.BOOTSTRAP_RESOURCES_DIR}}/wipe-rook.yaml.j2

flux:
internal: true
cmds:
- for: { var: TEMPLATES }
cmd: op run --env-file {{.KUBERNETES_DIR}}/bootstrap/bootstrap.env --no-masking -- minijinja-cli {{.ITEM}} | kubectl apply --server-side --filename -
- kubectl apply --server-side --kustomize {{.KUBERNETES_DIR}}/flux/config
vars:
TEMPLATES:
sh: ls {{.KUBERNETES_DIR}}/bootstrap/apps/*.j2
env:
VAULT: K8s
FLUX_GITHUB_PUBLIC_KEYS:
sh: curl -fsSL https://api.github.com/meta | jq --raw-output '"github.com "+.ssh_keys[]'
preconditions:
- op user get --me
59 changes: 0 additions & 59 deletions .taskfiles/bootstrap/resources/wipe-rook.yaml.j2
View file

This file was deleted.

2 changes: 1 addition & 1 deletion kubernetes/apps/actions-runner-system/gha-runner-scale-set-controller/ks.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: k8s-gitops
name: flux-system
wait: true
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion kubernetes/apps/actions-runner-system/gha-runner-scale-set/ks.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: k8s-gitops
name: flux-system
wait: true
interval: 30m
retryInterval: 1m
Expand Down
4 changes: 2 additions & 2 deletions kubernetes/apps/cert-manager/cert-manager/ks.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: k8s-gitops
name: flux-system
wait: true
interval: 30m
retryInterval: 1m
Expand All @@ -36,7 +36,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: k8s-gitops
name: flux-system
wait: true
interval: 30m
retryInterval: 1m
Expand Down
4 changes: 2 additions & 2 deletions kubernetes/apps/databases/cloudnative-pg/ks.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: k8s-gitops
name: flux-system
wait: true
interval: 30m
retryInterval: 1m
Expand All @@ -38,7 +38,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: k8s-gitops
name: flux-system
wait: true
interval: 30m
retryInterval: 1m
Expand Down
4 changes: 2 additions & 2 deletions kubernetes/apps/databases/emqx/ks.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: k8s-gitops
name: flux-system
wait: true
interval: 30m
retryInterval: 1m
Expand All @@ -38,7 +38,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: k8s-gitops
name: flux-system
wait: true
interval: 30m
retryInterval: 1m
Expand Down
4 changes: 2 additions & 2 deletions kubernetes/apps/external-secrets/external-secrets/ks.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: k8s-gitops
name: flux-system
wait: true
interval: 30m
retryInterval: 1m
Expand All @@ -35,7 +35,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: k8s-gitops
name: flux-system
wait: true
interval: 30m
retryInterval: 1m
Expand Down
2 changes: 1 addition & 1 deletion kubernetes/apps/external-secrets/onepassword-connect/ks.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ spec:
prune: true
sourceRef:
kind: GitRepository
name: k8s-gitops
name: flux-system
wait: true
interval: 30m
retryInterval: 1m
Expand Down
10 changes: 5 additions & 5 deletions ...pps/flux-system/flux/app/helmrelease.yaml → ...system/flux-operator/app/helmrelease.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,16 +2,16 @@
apiVersion: helm.toolkit.fluxcd.io/v2
kind: HelmRelease
metadata:
name: flux
name: flux-operator
spec:
interval: 30m
chart:
spec:
chart: flux2
version: 2.14.1
chart: flux-operator
version: 0.12.0
sourceRef:
kind: HelmRepository
name: fluxcd-community
name: controlplaneio
namespace: flux-system
install:
remediation:
Expand All @@ -23,4 +23,4 @@ spec:
retries: 3
valuesFrom:
- kind: ConfigMap
name: flux-helm-values
name: flux-operator-helm-values
2 changes: 1 addition & 1 deletion ...s/flux-system/flux/app/kustomization.yaml → ...stem/flux-operator/app/kustomization.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ kind: Kustomization
resources:
- ./helmrelease.yaml
configMapGenerator:
- name: flux-helm-values
- name: flux-operator-helm-values
files:
- ./resources/values.yaml
generatorOptions:
Expand Down
3 changes: 3 additions & 0 deletions kubernetes/apps/flux-system/flux-operator/app/resources/values.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
---
serviceMonitor:
create: true
26 changes: 26 additions & 0 deletions kubernetes/apps/flux-system/flux-operator/instance/helmrelease.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,26 @@
---
apiVersion: helm.toolkit.fluxcd.io/v2
kind: HelmRelease
metadata:
name: flux-instance
spec:
interval: 30m
chart:
spec:
chart: flux-instance
version: 0.12.0
sourceRef:
kind: HelmRepository
name: controlplaneio
namespace: flux-system
install:
remediation:
retries: 3
upgrade:
cleanupOnFail: true
remediation:
strategy: rollback
retries: 3
valuesFrom:
- kind: ConfigMap
name: flux-instance-helm-values
12 changes: 12 additions & 0 deletions kubernetes/apps/flux-system/flux-operator/instance/kustomization.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,12 @@
---
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
- ./prometheusrule.yaml
configMapGenerator:
- name: flux-instance-helm-values
files:
- ./resources/values.yaml
generatorOptions:
disableNameSuffixHash: true
0 ...lux/config/monitoring/prometheusrule.yaml → ...lux-operator/instance/prometheusrule.yaml
View file
File renamed without changes.
Loading

0 comments on commit 50505b6

Please sign in to comment.