GitOps is a pattern for deploying to Kubernetes through a GitHub repository as an intermediary. This works well with a system like Deliverybot. Instead of running the actual deployment inside GitHub actions, we can run a script to edit our Kubernetes manifests. This implements the “push” GitOps workflow. There’s an extra layer of security to this model since our Kubernetes cluster is pulling from a protected GitHub repository which removes certain types of attacks by ensuring that our CI system doesn’t have access to Kubernetes.
This example sets up a GitHub repository as a source of truth for Flux to read and to apply manifests into your Kubernetes cluster. It also has a corresponding GitHub action which can push manifests to this repository to deploy your code.
This brings the benefits of GitOps together with the ease of managing deployment automation with Deliverybot. Click a button and watch manifests be updated and deployed to your Kubernetes cluster!
This is currently in beta and the API around this may change.
cfssl to be installed along with
Copy the https://github.com/deliverybot/example-gitops repository into your organization.
GIT_REPOfirstname.lastname@example.org:myrepo/example-gitops.git GIT_PATH=deploy NAMESPACE=kube-system ./install.sh
You will then have to follow the Flux guide for adding a deploy key to your example repository.
Create a new repository to emulate an application that you want to deploy to Kubernetes and install the GitOps action https://github.com/deliverybot/gitops
Install the repository on Deliverybot.
Trigger a deployment and watch the action push a change to your flux repo!