cnp-flux-config

Flux v2 config for CFT AKS clusters

Repo Structure

Please see Repo setup for details on how this repo is organized and meant to work.

Adding an app to flux

• All App deployments are managed through HelmRelease manifests.
• Any new/existing application that is getting added to an environment for the first time should use Flux v2.

Encrypting Secrets With Sops

Sops setup

SOPs

Sops fails linting by default as we require 2 spaces while it uses 4 spaces. You can use yq to fix this:

yq eval -I 2 --inplace apps/mi/mi-adf-shir/sbox/mi-adf-auth-values.enc.yaml

upstream issue: https://github.com/mozilla/sops/issues/900

Rebooting nodes with kured

Documentation

Upgrading flux v2

Update flux cli in your local and run

flux install --export > apps/flux-system/base/gotk-components.yaml
flux install --export --components source-controller,kustomize-controller,helm-controller,notification-controller,image-reflector-controller,image-automation-controller > apps/flux-system/ptl-intsvc/base/gotk-components.yaml 

As Flux in PTL makes use of optional GOTK image automation components, we generate a second gotk-components.yaml file just for PTL. Information about Flux GOTK components can be found here.

Both files are maintained by Renovate after generation.