Argo workflows ingress

argocd/iac/terraform/examples/eks/argo-wf-ingress/README.md

@@ -0,0 +1,42 @@
+# Argo Workflows with ingress domain name
+
+Example on how to deploy Amazon EKS with addons configured via ArgoCD.
+In this example the ArgoCD is configured with ingress using a https domain name managed on Route53
+
+
+**Create DNS Hosted Zone in Route 53:**
+
+In this step you will delegate your registered domain DNS to Amazon Route53. You can either delegate the top level domain or a subdomain.
+```shell
+export TF_VAR_domain_name=<my-registered-domain> # For example: example.com or subdomain.example.com
+```
+
+You can use the Console, or the `aws` cli to create a hosted zone. Execute the following command only once:
+```sh
+aws route53 create-hosted-zone --name $TF_VAR_domain_name --caller-reference "$(date)"
+```
+Use the NameServers in the DelegatoinSet to update your registered domain NS records at the registrar.
+
+
+After creating the Route53 zone deploy the EKS Cluster
+```shell
+terraform init
+terraform apply
+```
+
+Access Terraform output to configure `kubectl` and `argocd`
+```shell
+terraform output
+```
+
+To access ArgoCD thru ingress https use the following command to get URL and passwords
+```shell
+echo "URL: https://$(kubectl get ing -n argocd argo-cd-argocd-server -o jsonpath='{.spec.tls[0].hosts[0]}')"
+echo "Username: admin"
+echo "Password: $(kubectl get secrets argocd-initial-admin-secret -n argocd --template="{{index .data.password | base64decode}}")"
+```
+
+Destroy EKS Cluster
+```shell
+./destroy.sh
+```

argocd/iac/terraform/examples/eks/argo-wf-ingress/bootstrap/addons.yaml

@@ -0,0 +1,32 @@
+apiVersion: argoproj.io/v1alpha1
+kind: ApplicationSet
+metadata:
+  name: bootstrap-addons
+  namespace: argocd
+spec:
+  syncPolicy:
+    preserveResourcesOnDeletion: true
+  generators:
+    - clusters:
+        selector:
+          matchExpressions:
+            - key: akuity.io/argo-cd-cluster-name
+              operator: NotIn
+              values: [in-cluster]
+  template:
+    metadata:
+      name: 'bootstrap-addons'
+    spec:
+      project: default
+      source:
+        repoURL: '{{metadata.annotations.addons_repo_url}}'
+        path: '{{metadata.annotations.addons_repo_basepath}}{{metadata.annotations.addons_repo_path}}'
+        targetRevision: '{{metadata.annotations.addons_repo_revision}}'
+        directory:
+          recurse: true
+          exclude: exclude/*
+      destination:
+        namespace: 'argocd'
+        name: '{{name}}'
+      syncPolicy:
+        automated: {}

argocd/iac/terraform/examples/eks/argo-wf-ingress/bootstrap/workloads.yaml

@@ -0,0 +1,19 @@
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  name: workloads
+  namespace: 'argocd'
+  finalizers:
+  - resources-finalizer.argocd.argoproj.io
+spec:
+  destination:
+    server: https://kubernetes.default.svc
+    namespace: 'guestbook'
+  project: default
+  source:
+    path: helm-guestbook
+    repoURL: https://github.com/argoproj/argocd-example-apps
+  syncPolicy:
+    automated: {}
+    syncOptions:
+    - CreateNamespace=true

argocd/iac/terraform/examples/eks/argo-wf-ingress/destroy.sh

@@ -0,0 +1,16 @@
+#!/bin/bash
+
+set -x
+
+# Delete the Ingress/SVC before removing the addons
+TMPFILE=$(mktemp)
+terraform output -raw configure_kubectl > "$TMPFILE"
+source "$TMPFILE"
+
+kubectl delete ing -A --all
+
+terraform destroy -target="module.gitops_bridge_bootstrap" -auto-approve
+terraform destroy -target="module.eks_blueprints_addons" -auto-approve
+terraform destroy -target="module.eks" -auto-approve
+terraform destroy -target="module.vpc" -auto-approve
+terraform destroy -auto-approve