Start Basic Pulumi Typescript Implementation #39
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
csantanapr
requested changes
Feb 1, 2024
Member
csantanapr
left a comment
csantanapr
left a comment
There was a problem hiding this comment.
hard ask is on the directory name adding eks folder
Signed-off-by: Blake Romano <blake.romano@imaginelearning.com>
Signed-off-by: Blake Romano <blake.romano@imaginelearning.com>
* update crossplane --------- Signed-off-by: Carlos Santana <csantana23@gmail.com> Signed-off-by: Blake Romano <blake.romano@imaginelearning.com>
…bridge-dev#46) Signed-off-by: Carlos Santana <csantana23@gmail.com> Signed-off-by: Blake Romano <blake.romano@imaginelearning.com>
Signed-off-by: Carlos Santana <csantana23@gmail.com> Signed-off-by: Blake Romano <blake.romano@imaginelearning.com>
* initial work argo-workflows Signed-off-by: Carlos Santana <csantana23@gmail.com> Signed-off-by: Blake Romano <blake.romano@imaginelearning.com>
Signed-off-by: Blake Romano <blake.romano@imaginelearning.com>
Signed-off-by: Carlos Santana <csantana23@gmail.com> Signed-off-by: Blake Romano <blake.romano@imaginelearning.com>
* update argo workflows Signed-off-by: Carlos Santana <csantana23@gmail.com> * add karpenter pattern Signed-off-by: Carlos Santana <csantana23@gmail.com> * make eks 1.29 Signed-off-by: Carlos Santana <csantana23@gmail.com> --------- Signed-off-by: Carlos Santana <csantana23@gmail.com> Signed-off-by: Blake Romano <blake.romano@imaginelearning.com>
Signed-off-by: Blake Romano <blake.romano@imaginelearning.com>
…ap command. Signed-off-by: Blake Romano <blake.romano@imaginelearning.com>
blakeromano
force-pushed
the
pulumi-ts-implementation-start
branch
from
799ba00 to
f790c55
Compare
csantanapr
reviewed
Feb 22, 2024
Member
csantanapr
left a comment
csantanapr
left a comment
There was a problem hiding this comment.
I think you need to rebase I see other none related changes
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is a very basic implementation of the GitOps Bridge in Pulumi Typescript. This implores using a Hub Spoke model where a GitOps Controller is deployed in a "Hub" cluster and there are "Spoke" clusters that the Hub cluster communicates with and deploys resources to.
In this implementation we use IRSA to give Argo an appropriate role as well as the ability to assume other roles in other accounts/regions and create a role in our Spoke clusters for Argo to be able to assume as well mapping that to a master role in the control plane.
We ideally want to support two types of GitOps configuration. One is where we can upload a K8s secret yaml into Github where a GitOps Controller could pick it up and deploy and manage the lifecycle of it. Another is where you generate the K8s secret yaml and Pulumi manages the lifecycle of it. In the current implementation only the first method is functional but should be fairly simple for someone to add support for the latter.
Note: Outside of Pulumi Preview and an adaptation of this that I have done previously this is untested so I'd recommend validating that this works as expected by actually deploying this.