helm init needed for helm repo add

[jolson490]

Thank you so much for creating this plugin! The team I'm on started using this plugin last week, and it's working great.
Before we found this plugin, we looked into securing tiller by enabling TLS. Now after having explored both of those options (as ways to not have an unsecure/open endpoint in our K8s clusters), it seems like going tillerless is way easier than setting up a pipeline to maintain/update *.pem certs for TLS. (I wonder if this plugin can/should be mentioned on https://github.com/helm/helm/blob/master/docs/securing_installation.md...)

The only minor gotcha I ran into (when working through the steps described on https://rimusz.net/tillerless-helm/) is we sometimes do helm repo add, which (even when using this plugin) requires that helm init --client-only has been done. So perhaps it would be helpful to add mention of that to the blog post.

[rimusz]

thanks for the kind words.
sure I will update the readme with helm init --client-only for helm repo add command.

up to you to open PR for https://github.com/helm/helm/blob/master/docs/securing_installation.md :)

[rimusz]

both plugin's readme and blog post got helm init --client-only as install requirement.

[jolson490]

That all sounds great. And thanks for the updates.
fyi i created: helm/helm#4852

[rimusz]

ok, cool, I do not want to vote for my plugin there, let helm community to decide :)