{"id":28480471,"url":"https://github.com/heschmat/devops_eks_portfolio","last_synced_at":"2025-07-03T19:32:38.034Z","repository":{"id":296950225,"uuid":"994409033","full_name":"heschmat/devops_eks_portfolio","owner":"heschmat","description":"🛠️ A complete DevOps portfolio project deploying a static Go app with Docker, Kubernetes, GitHub Actions, Helm, Argo CD, and EKS — showcasing CI/CD, GitOps, and secure cloud-native practices.","archived":false,"fork":false,"pushed_at":"2025-06-16T21:43:52.000Z","size":50,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-06-16T22:35:57.409Z","etag":null,"topics":["argocd","docker","docker-compose","eks","helm-charts","kubernetes","terraform","terraform-module"],"latest_commit_sha":null,"homepage":"","language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/heschmat.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-06-01T21:44:43.000Z","updated_at":"2025-06-16T21:43:55.000Z","dependencies_parsed_at":"2025-06-08T02:03:13.363Z","dependency_job_id":null,"html_url":"https://github.com/heschmat/devops_eks_portfolio","commit_stats":null,"previous_names":["heschmat/devops_eks_portfolio"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/heschmat/devops_eks_portfolio","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/heschmat%2Fdevops_eks_portfolio","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/heschmat%2Fdevops_eks_portfolio/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/heschmat%2Fdevops_eks_portfolio/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/heschmat%2Fdevops_eks_portfolio/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/heschmat","download_url":"https://codeload.github.com/heschmat/devops_eks_portfolio/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/heschmat%2Fdevops_eks_portfolio/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":263388563,"owners_count":23459237,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["argocd","docker","docker-compose","eks","helm-charts","kubernetes","terraform","terraform-module"],"created_at":"2025-06-07T19:06:32.310Z","updated_at":"2025-07-03T19:32:38.017Z","avatar_url":"https://github.com/heschmat.png","language":"HCL","funding_links":[],"categories":[],"sub_categories":[],"readme":"# DevOps Portfolio Project: Go Static App Deployment\n\n![CI/CD](https://img.shields.io/github/actions/workflow/status/heschmat/devops_eks_portfolio/cicd.yml?branch=main)\n![License](https://img.shields.io/github/license/heschmat/devops_eks_portfolio)\n\n## Overview\n\nThis project demonstrates a complete DevOps workflow by deploying a simple static Go application with three pages using Docker, Kubernetes, GitHub Actions, and Argo CD on Amazon EKS. It reflects production-grade practices including secure containerization, CI/CD automation, and GitOps deployment.\n\n---\n\n## 🔧 Tech Stack\n\n* **Language:** Go (static site)\n* **Containerization:** Docker, Multi-stage builds, Distroless base image\n* **CI/CD:** GitHub Actions, Grivy for image scanning\n* **Orchestration:** Kubernetes (KinD for local, EKS for production)\n* **Package Management:** Helm\n* **GitOps:** Argo CD\n* **Cloud Provider:** AWS (EKS, IAM, OIDC)\n\n---\n\n## 🚀 DevOps Workflow\n\n### 1. Local Development\n\n* `Dockerfile.dev` and `docker-compose.yaml` for development setup\n* Run, build, test the app locally with port forwarding\n\n### 2. Production Image\n\n* Multi-stage Dockerfile ending with **distroless image** for security \u0026 minimal size\n* Built and pushed to `ghcr.io`\n\n### 3. Kubernetes Manifests\n\n* Raw manifests created with attention to:\n\n  * Namespace isolation\n  * Correct `containerPort`, `targetPort`, selectors\n  * `imagePullSecrets` for private registry access\n\n### 4. KinD Testing\n\n* Validate manifest correctness in a KinD cluster\n* Debug deployment issues locally before cloud rollout\n\n### 5. Helm Chart\n\n* Created a Helm chart for easy installation and upgrades\n\n### 6. EKS Deployment\n\n* Created an EKS cluster using `eksctl`\n* Deployed the app via Helm to a dedicated namespace\n\n### 7. Ingress \u0026 Load Balancing\n\n* Configured ALB Ingress Controller with:\n\n  * OIDC provider\n  * IAM role for controller\n  * Helm-based ALB installation\n* Verified external access via ALB\n\n### 8. GitHub Actions CI/CD\n\nJobs include:\n\n* ✅ Unit Testing\n* ✅ Static Code Analysis\n* ✅ Docker Build, Scan (Grivy), and Push to GHCR\n* ✅ `values.yaml` image tag update and push to GH for Argo CD sync\n\n### 9. GitOps with Argo CD\n\n* Deployed Argo CD to EKS\n* Continuous deployment triggered by changes in Helm values\n\n---\n\n## 📈 Next Steps\n\n* **Infrastructure as Code (IaC):** Replacing `eksctl` setup with **Terraform** for EKS and AWS resources\n* **Observability:** Integrate **Prometheus + Grafana** for monitoring, custom metrics, and dashboards\n\n---\n\n## 📂 Repository Structure\n\n```\n.\n├── Helm/                   # Helm chart\n├── .github/workflows/      # GitHub Actions CI/CD\n├── Dockerfile              # Production image (distroless)\n├── Dockerfile.dev          # Dev image\n├── docker-compose.yaml     # Local development setup\n├── k8s/manifests/          # K8s namespace, service, deployment, ingress\n└── README.md\n```\n\n---\n\n## 📸 Screenshots\n\n\u003e @TODO: Add screenshots of the app UI, Argo CD dashboard, GitHub Actions runs, or Prometheus graphs.\n\n---\n\n## 🌐 Access\n\nOnce deployed on EKS:\n\n```bash\nkubectl get svc -n \u003cnamespace\u003e\nkubectl get nodes -o wide\n```\n\nApp should be reachable at `http://\u003cnode_public_ip\u003e:\u003cnode_port\u003e` or via **ALB DNS** after Ingress is configured.\n\n---\n\n## 🧠 Learning Outcomes\n\n* End-to-end DevOps lifecycle\n* CI/CD and GitOps integration\n* Secure container builds\n* AWS IAM, OIDC, EKS, ALB experience\n* Helm templating and best practices\n\n---\n\n## 📃 License\n\n[MIT](./LICENSE)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fheschmat%2Fdevops_eks_portfolio","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fheschmat%2Fdevops_eks_portfolio","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fheschmat%2Fdevops_eks_portfolio/lists"}