Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/andriykalashnykov/argo-cd-demo

Argo CD demo
https://github.com/andriykalashnykov/argo-cd-demo

argocd devops

Last synced: 7 months ago
JSON representation

Argo CD demo

Awesome Lists containing this project

README 

          
[![Hits](https://hits.seeyoufarm.com/api/count/incr/badge.svg?url=https%3A%2F%2Fgithub.com%2FAndriyKalashnykov%2Fargo-cd-demo&count_bg=%2333CD56&title_bg=%23555555&icon=&icon_color=%23E7E7E7&title=hits&edge_flat=false)](https://hits.seeyoufarm.com)

# Argo CD Demo



## Prerequisites



* [kubectl](https://kubernetes.io/docs/tasks/tools/install-kubectl/)

* [argocd cli](https://argoproj.github.io/argo-cd/cli_installation/)



## Install Argo CD



```shell

kubectl create namespace argocd



# Non-HA

kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v1.7.8/manifests/install.yaml

# kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/stable/manifests/install.yaml



# HA

# kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v1.7.8/manifests/ha/install.yaml



kubectl wait --for=condition=Ready pods --all -n argocd

# watch kubectl get pods -n argocd



kubectl get svc argocd-server -n argocd -o yaml |sed 's/ClusterIP/LoadBalancer/' |kubectl replace -f -

# watch kubectl get svc -n argocd



LB_IP=$(kubectl get svc --namespace argocd argocd-server -o jsonpath='{.status.loadBalancer.ingress[0].ip}')

# or

# kubectl port-forward svc/argocd-server -n argocd 8080:443

# LB_IP=localhost:8080

```



## Change default password for the admin user



Use Argo CD CLI to log in and change default password

```shell

ARGOCD_PWD=$(kubectl get pods -n argocd -l app.kubernetes.io/name=argocd-server -o name | cut -d'/' -f 2)

argocd login $LB_IP --insecure --username admin --password $ARGOCD_PWD

argocd account update-password --insecure --server $LB_IP --account admin --current-password $ARGOCD_PWD --new-password admin

```



or change password directly by patching secret



```shell

# https://www.browserling.com/tools/bcrypt

# bcrypt(admin)=$2a$10$.fPHMWyRDUbMOtTv/7V.UOl.ts5QgRpSVF0aGrkZSMvTInwpgcJ6S



kubectl -n argocd patch secret argocd-secret \

  -p '{"stringData": {

    "admin.password": "$2a$10$.fPHMWyRDUbMOtTv/7V.UOl.ts5QgRpSVF0aGrkZSMvTInwpgcJ6S",

    "admin.passwordMtime": "'$(date +%FT%T%Z)'"

  }}'

```



## Add Kubernetes cluster to Argo CD



```shell

kubectx gke

argocd cluster add $(kubectl config current-context)

kubectx gke2

argocd cluster add $(kubectl config current-context)

argocd cluster list

```



## Build and push demo-app Docker image



```shell

cd ./demo-app

./build-push.sh

```



## Connect to a private Git Repo



```shell

argocd repo add https://github.com/argoproj/argocd-example-apps --username  --password 

```



### Branching



```shell

git checkout main

git checkout -b dev main

git checkout dev

git push origin dev

...

git checkout dev

git merge main

git push --set-upstream origin dev

```



## Add demo-app to ArgoCD



```shell

argocd app create spring-petclinic-dev --repo https://github.com/AndriyKalashnykov/argo-cd-demo.git --path ./demo-app --dest-name gke2 --dest-namespace spring-petclinic --revision dev --sync-policy automated

argocd app sync spring-petclinic-dev



argocd app create spring-petclinic-main --repo https://github.com/AndriyKalashnykov/argo-cd-demo.git --path ./demo-app --dest-name gke --dest-namespace spring-petclinic --revision main --sync-policy automated

argocd app sync spring-petclinic-main



argocd app list



argocd app set spring-petclinic-dev --sync-policy automated

argocd app set spring-petclinic-main --sync-policy automated



kubectl config use-context gke2

kubectl get pod -n spring-petclinic

kubectl config use-context gke

kubectl get pod -n spring-petclinic



argocd app delete spring-petclinic-dev

argocd app delete spring-petclinic-main



argocd app patch myapplication --patch '{"spec": { "source": { "targetRevision": "master" } }}' --type merge

```



## RBAC



```shell

DEV_TEAM=...

CONFIG_REPO_URL=...

DEST_CLUSTER_URL=...

DEST_CLUSTER_NAME=...



argocd proj create $DEV_TEAM \

  --src $CONFIG_REPO_URL \

  --dest $DEST_CLUSTER_URL,$DEV_TEAM



argocd app create $DEV_TEAM-app \

  --project $DEV_TEAM \

  --repo $CONFIG_REPO_URL \

  --path ./demo-app \

  --revision dev \

  --dest-name $DEST_CLUSTER_NAME \

  --dest-namespace $DEV_TEAM \

  --sync-policy none

```



```yaml

apiVersion: v1

kind: ConfigMap

metadata:

  name: argocd-rbac-cm

  namespace: argocd

data:

  policy.csv: |

    p, role:$DEV_TEAM, applications, get, $DEV_TEAM/*, allow

    p, role:$DEV_TEAM, applications, sync, $DEV_TEAM/*, allow



    g, $USER, role:$DEV_TEAM

```



### Validation



```shell

# Validate policy file

docker run --rm -it -w /src -v $(pwd):/src argoproj/argocd argocd-util rbac validate --policy-file $RBAC_POLICY_FILE



# Validate if user "admin" can access proj and app "team-proj/team-app" using a kubeconfig file

docker run --rm -it -w /src -v $(pwd):/src argoproj/argocd argocd-util rbac can admin get application 'team-proj/team-app' --policy-file $RBAC_POLICY_FILE --kubeconfig config

```



## Rollouts



### Install



Controller



```shell

kubectl create namespace argo-rollouts

kubectl apply -n argo-rollouts -f https://raw.githubusercontent.com/argoproj/argo-rollouts/stable/manifests/install.yaml

```



kubectl plugin



```shell

https://github.com/argoproj/argo-rollouts/releases/latest

```



### Blue Green Deployment



```shell

kubectl create ns blue-green



DEST_CLUSTER_NAME=...



argocd app create blue-green --repo https://github.com/AndriyKalashnykov/argo-cd-demo.git --path ./blue-green --dest-name $DEST_CLUSTER_NAME --dest-namespace blue-green --revision main --sync-policy automated



kubectl argo rollouts get rollouts rollout-bluegreen -w



# simulate a commit

kubectl argo rollouts set image rollout-bluegreen rollouts-demo=argoproj/rollouts-demo:green



kubectl describe svc rollout-bluegreen-preview



kubectl describe svc rollout-bluegreen-active



kubectl get po --show-labels



kubectl argo rollouts undo rollout-bluegreen



kubectl argo rollouts set image rollout-bluegreen rollouts-demo=argoproj/rollouts-demo:green



kubectl argo rollouts promote rollout-bluegreen

```



## Uninstall Argo CD



```shell

kubectl delete -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v1.7.8/manifests/install.yaml

# kubectl delete -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/stable/manifests/install.yaml

kubectl -n argocd get all

```



### Support multiple clusters (destinations) for an Application in Argo CD



* [support multiple clusters](https://github.com/argoproj/argo-cd/issues/1673)

* [Proposal & Proof of Concept: Dynamically Generate Applications for Clusters Based On Label Selectors](https://github.com/argoproj/argo-cd/issues/3403)