Flux is a set of continuous and progressive delivery solutions for Kubernetes that are open and extensible.
Overview
Flux is developed by keeping the GitOps notion in mind, and GitOps is a way of managing your infrastructure and applications so that the whole system is described declaratively and version controlled (most likely in a Git repository), and has an automated process that ensures that the deployed environment matches the state specified in a repository.
This story is about implementing a Continous Deployment solution keeping the following use cases in mind:
- Detect and Deploy changes in the application’s Kubernetes manifests repository.
- Detect and Deploy a new image tag from the application’s image registry.
- Generate an alert about the operation mentioned above on a provider, i.e, slack, google chat, etc.
Assumptions
In this story I am taking the following assumptions:
- A Kubernetes cluster is up and running.
- You are a code repository and image registry i.e. GitHub, GitLab, etc.
- You are using as a notification/alert provider, i.e. slack, google chat, etc.
Basic Concepts
Understand the following concepts before we proceed further:
- Sources.
- Reconciliation.
- Kustomization.
- Bootstrap.
Each one of the above concepts is explained in detail on this link.
Details
Lets get our hand dirty !
Flux Deployment
- Install flux-cli on your system. Binaries are available on the release page but make sure to install a version that is compatible with your k8s version.
- Check if it is working:
flux -v
3. Create an access token for your Git repository, it will be used by flux-cli for bootstrapping flux components on your k8s environment. Export it as an env:
export <GITLAB | GITHUB>_TOKEN=<enter the token here>
4. Bootstrap flux using flux-cli:
flux bootstrap <github | gitlab> \
--components-extra=image-reflector-controller,image-automation-controller \
--hostname=<url for you code repository, don't add repository name in url, i.e, https://github.com > \
--owner=<github-organization / gitlab groups> \
--repository=<name of manifests repository for flux components> \
--branch=<branch name> \
--path=<path for flux manifests in the repository, default is clusters/config> \
--token-auth \
--personal
Details about bootstrapping it in different environments are available on this link.
5. Flux components will be deployed in the flux-system namespace:
kubectl get pods -n flux-system
Pods for the following components must be in a running state:
a. Image Automation and Reflector Controller
If all the above components are in a running state, flux has been installed on your cluster successfully.
Application’s Continuous Deployment Resources
Now we will create manifests for our application that the above components will use to enable Continuous deployment. These manifests include:
Image Repository: it will be used to reconcile application’s image tag deployed on kubernetes with application’s container registry using on different policies, i.e, semvar, numerical etc
Git Repository: it will be used to reconcile application’s state on kubernetes with a repository where its kubernetes manifests are stored, i.e, deployment, service and ingress.
Alerts: it will be used to generate alerts on different flux alert providers
I have added a little bit of information about each file. These manifests are available on this repository.
One more thing that you need to do is add an Image Update Automation detection string in deployment.yaml manifest. It's going to look like this:
Verify if resources are created successfully:
- Verify GitRepository is in a Ready state:
$ kubectl get gitrepository -n default
2. Verify ImageRepository has scanned the tags successfully:
$ kubectl get imagerepository -n default
3. Verify alert is in a Ready state:
$ kubectl get alert -n default
Final Thoughts
I hope you would love this story and let me know if anything can be improved.