Skip to content
This repository has been archived by the owner on May 28, 2024. It is now read-only.

Overlay for Anthos deployment #5

Closed
williamsmt opened this issue Aug 10, 2022 · 1 comment
Closed

Overlay for Anthos deployment #5

williamsmt opened this issue Aug 10, 2022 · 1 comment

Comments

@williamsmt
Copy link

Deploying the central-cluster (along with ArgoCD) to an Anthos platform requires additional configuration for mounting the KSA secret into the deployment. We should consider creating a separate overlay to deploy to Anthos clusters.

Example patch:

apiVersion: apps/v1
kind: Deployment
metadata:
  name: argocd-server
spec:
  template:
    spec:
      containers:
        env:
        - name: GOOGLE_APPLICATION_CREDENTIALS
          value: /var/run/secrets/tokens/gcp-ksa/google-application-credentials.json
        name: argocd-server
        volumeMounts:
        - mountPath: /var/run/secrets/tokens/gcp-ksa
          name: gcp-ksa
          readOnly: true
      volumes:
      - name: gcp-ksa
        projected:
          defaultMode: 420
          sources:
          - serviceAccountToken:
              audience: $PROJECT_ID.svc.id.goog
              expirationSeconds: 172800
              path: token
          - configMap:
              items:
              - key: config
                path: google-application-credentials.json
              name: my-cloudsdk-config
              optional: false
@knee-berts
Copy link
Contributor

Done

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@knee-berts @williamsmt