A personal K8s cluster, configured with code (using Flux).
deploy
– All the YAML-specified resources that are managed by Flux.sealed-secrets
– A workbench from which to create sealed secrets.
If Flux is not installed, it needs to be boostrapped:
flux bootstrap github \
--components-extra=image-reflector-controller,image-automation-controller \
--owner=stevenxie \
--repository=columbia \
--branch=main \
--path=deploy \
--personal \
--private=false
The same command is used to update the Flux system. You can verify the
installation/upgrade status with flux check
.
Configuration secrets are to be hidden using
git-secret
. Reveal secrets using git secret reveal
,
and hide them using git secret hide -m
.
Kubernetes secrets should be encrypted using
sealed-secrets
, using a
process described in sealed-secrets/README.md
.