Figure out how to share inputs for cluster install driven by ACM #38
Comments
|
There are a few things that complicate the process of (a) managing the input data for a cluster installation and (b) creating something that can be shared without revealing All The Secrets. I'd like to take a look at (a) first: We'd like to manage our cluster install configuration with a GitOps-style workflow. In the short term, that means we'd like to store the input manifests git repository, and initialize a cluster install via |
|
Not entirely sure if I understand what's going on here -- but could writing a simple exec plugin for kustomize help with this? one that maybe we could share with others who want to do the same thing? |
|
That's a neat idea! Like ACM generator plugin.. that would work nicely. @HumairAK do you know if it's possible to compose kustomize plugins - like to use ksops generator first and then some other plugin on the same resource? Because we probably want the resource to be encrypted in git and then decrypt and generate configs from it... |
|
No clue, we would need to look into it. |
|
Ideally I would like to see this fixed in ACM itself :). I think we could work around this with an exec plugin: we would probably need something that takes a single input document and uses it to generate both the ClusterDeployment resource and the |
|
So, just thinking about this, if we want to DRY everything out, we'll need to read as input and emit in the appropriate places...
I think our deployment would end up looking like:
And that's it. And the entire configuration would then be generated by the kustomize plugin. |
|
Consolidating this into an RFE for our toolbox operate-first/toolbox#24 |
How can we share or automate the creation of inputs to ACM for driving a cluster install?
The text was updated successfully, but these errors were encountered: