This repository contains helm charts organized using the App of Apps
strategy.
- install vault
helm dep update ./charts/apps/core-services/vault
helm upgrade vault ./charts/apps/core-services/vault --install --namespace core-services --create-namespace --set vaultDataPath="CHANGE_ME"
- install vault secrets operator
helm dep update ./charts/apps/core-services/vault-secrets-operator
helm upgrade vault-secrets-operator ./charts/apps/core-services/vault-secrets-operator --install --namespace core-services --create-namespace
- install argocd
helm dep update ./charts/apps/core-services/argo-cd
helm upgrade argo-cd ./charts/apps/core-services/argo-cd --install --namespace core-services --create-namespace
- create argocd Application using the provided
master-app.yaml
as example
- rename
stack-apps
folder toapp-of-apps
- rename
services
folder toapps
- solve certificate issue for kubernetes api so that upgrade argocd action can work
- helm linting for argo-cd chart
- find a way to replace the hostPath from vault pv.yaml
- expose kubernetes api some other way to bypass cloudflare challenge in action
- manage dependencies between argo-cd and vault
- add refresh for vault secrets
- install stacker configmaps/secret watcher to restart pods when those change
- better documentation
- add prometheus and grafana monitoring
- use ansible to faster deploy all requirements on a machine?
- use tokens from the TokenRequest API or manually created secret-based tokens instead of auto-generated secret-based tokens.
- better backup strategy?
- better deployment strategy?