使用argocd实现应用基于gitops的持续部署。
企业内部应用都以helm charts方式部署,charts托管在内部git仓库;具体应用配置(helm values)根据不同环境也托管在内部git仓库。所以可以简单理解部署方式如下:
应用部署=应用chart+应用values
kubectl create namespace argocd kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/stable/manifests/install.yaml
kubectl patch svc argocd-server -n argocd -p '{"spec": {"type": "NodePort"}}' argocd login ${nodeIp}:${nodePort} argocd account update-password
-
1、配置多个集群的 CONTEXT export KUBECONFIG=$HOME/.kube/config.1:$HOME/.kube/config.2 kubectl config get-contexts
-
2、添加新集群,根据上面get-contexts结果添加 argocd cluster add 2xxx104401xxxx7-cxxxxxxxxxxxxxa74afabbf --kubeconfig $HOME/.kube/kubeconfig.1 --name test
kubectl apply -f project.yaml
apiVersion: argoproj.io/v1alpha1
kind: AppProject
metadata:
name: myproject
namespace: argocd
spec:
clusterResourceWhitelist:
- group: '*'
kind: '*'
description: '测试环境:myproject'
destinations:
- name: myproject
namespace: '*'
server: https://121.xx.xx.xx:6443
namespaceResourceWhitelist:
- group: '*'
kind: '*'
# 建议不要开启孤岛资源监控,很可能会引起大量非必要应用同步,造成cpu满载
#orphanedResources:
# warn: false
sourceRepos:
- '*'
sourceNamespaces:
- '*'
UI 界面添加即可
- 使用git管理的charts仓库:[email protected]:git-charts.git
- 使用git管理的values仓库:[email protected]:git-values.git
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: test-app
namespace: argocd
spec:
syncPolicy:
# 一般建议禁用自动应用同步
#automated: {}
syncOptions:
- CreateNamespace=true
- ServerSideApply=true
project: myproject
destination:
server: https://121.xx.xx.xx:6443
namespace: default
sources:
- repoURL: '[email protected]:git-charts.git'
targetRevision: master
path: charts/test-app
helm:
valueFiles:
- values.yaml
- $values/myproject-test/global.yaml
- $values/myproject-test/test-app.yaml
- repoURL: '[email protected]:git-values.git'
targetRevision: master
ref: values
apiVersion: argoproj.io/v1alpha1
kind: ApplicationSet
metadata:
name: test-appset
namespace: argocd
spec:
generators:
- git:
repoURL: '[email protected]:git-charts.git'
revision: master
directories:
- path: charts/*
- path: charts/extras
exclude: true
template:
metadata:
name: '{{path.basename}}'
spec:
project: myproject
sources:
- repoURL: '[email protected]:git-charts.git'
targetRevision: master
path: charts/{{path.basename}}
helm:
valueFiles:
- values.yaml
- $values/myproject-test/global.yaml
- $values/myproject-test/{{path.basename}}.yaml
- repoURL: '[email protected]:git-values.git'
targetRevision: master
ref: values
destination:
server: https://121.xx.xx.xx:6443
namespace: default
syncPolicy:
#automated: {}
syncOptions:
- CreateNamespace=true
- ServerSideApply=true
- 允许argocd应用在任意命名空间创建 https://argo-cd.readthedocs.io/en/stable/operator-manual/app-any-namespace/