Skip to content
This repository has been archived by the owner on Jan 22, 2024. It is now read-only.

Install janus-platforms with GitOps #47

Open
trevorbox opened this issue Feb 16, 2023 · 9 comments
Open

Install janus-platforms with GitOps #47

trevorbox opened this issue Feb 16, 2023 · 9 comments
Assignees
@malacourse @trevorbox

Comments

@trevorbox
Copy link

Create a procedure for deploying Openshift GitOps and ApplicationSet to then sync all platform services & configurations so that the IDP is ready to use in a single cluster.
@trevorbox
Copy link
Author

Hi @malacourse, @raffaelespazzoli mentioned that you might be working on this but I am also happy to take this otherwise.

@trevorbox trevorbox self-assigned this Feb 16, 2023
@raffaelespazzoli
Copy link
Contributor

  • general folder layout: Matt
  • vault: michael
  • vault-config-operator: michael
  • devspaces: matt
  • tekton: trevor
  • keycloak: trevor
  • cert-manager: michael
  • gitwebhook-operator: Matt

applicationset:

@trevorbox
Copy link
Author

trevorbox commented Feb 20, 2023
edited
Loading

I propose we follow this for using an ApplicationSet: https://argocd-applicationset.readthedocs.io/en/stable/Generators-Git/
This pattern might work nicely if/when the platform becomes a multi-cluster deployment.
An example I tried: https://github.com/trevorbox/gitops-example-iac-go#deploy-applicationset

@trevorbox
Copy link
Author

After #48 is merged, I will attempt the ApplicationSet pattern

@mattheh
Copy link
Contributor

mattheh commented Feb 21, 2023

@trevorbox merged, I'll take a look at the general folder layout today

@trevorbox
Copy link
Author

@mattheh my thoughts regarding structure - https://github.com/trevorbox/assemble-platforms/tree/gitops/deploy
https://github.com/trevorbox/assemble-platforms/tree/gitops#deploy

@trevorbox
Copy link
Author

Options to consider:

  1. understand the usefulness of Keycloak for auth abstraction
  2. perhaps Gitops can be useful initially for installing operators and then an Ansible script to setup secrets

To correctly GitOps-ify secrets we may need to use vault-config-operator and path operator.
We may also need argo workflows/helm hooks to get everything completely in GitOps.
Maybe a pipeline could also run to setup secrets.

@mattheh mattheh changed the title Install assemble-platforms with GitOps Install janus-platforms with GitOps Apr 13, 2023
@cmoulliard
Copy link

  1. understand the usefulness of Keycloak for auth abstraction

AFAIK janus-idp auth is enabled by default and by consequence it is needed to use a OAuth provider (keycloak, etc)

@cmoulliard
Copy link

2. perhaps Gitops can be useful initially for installing operators

Why do you want to install operators instead of Helm charts or resources able to install also janus-idp on vanilla k8s clusters ;-) I dont see why we have to use operators to install singleton applications such as: Tekton, ArgoCD, Keycloak @trevorbox

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@malacourse malacourse

@trevorbox trevorbox

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@cmoulliard @raffaelespazzoli @mattheh @malacourse @trevorbox