Book Image

Argo CD in Practice

By : Liviu Costea, Spiros Economakis
Book Image

Argo CD in Practice

By: Liviu Costea, Spiros Economakis

Overview of this book

GitOps follows the practices of infrastructure as code (IaC), allowing developers to use their day-to-day tools and practices such as source control and pull requests to manage apps. With this book, you’ll understand how to apply GitOps bootstrap clusters in a repeatable manner, build CD pipelines for cloud-native apps running on Kubernetes, and minimize the failure of deployments. You’ll start by installing Argo CD in a cluster, setting up user access using single sign-on, performing declarative configuration changes, and enabling observability and disaster recovery. Once you have a production-ready setup of Argo CD, you’ll explore how CD pipelines can be built using the pull method, how that increases security, and how the reconciliation process occurs when multi-cluster scenarios are involved. Next, you’ll go through the common troubleshooting scenarios, from installation to day-to-day operations, and learn how performance can be improved. Later, you’ll explore the tools that can be used to parse the YAML you write for deploying apps. You can then check if it is valid for new versions of Kubernetes, verify if it has any security or compliance misconfigurations, and that it follows the best practices for cloud-native apps running on Kubernetes. By the end of this book, you’ll be able to build a real-world CD pipeline using Argo CD.

Related Content you might be interested in

Current Title:

Small book image
Argo CD in Practice
Liviu Costea | Spiros Economakis
Nov, 2022 | 236 pages
Small book image
Modern DevOps Practices
Gaurav Agarwal
Jan, 2024 | 568 pages
Small book image
Managing Kubernetes Resources Using Helm
Austin Dewey | Andrew Block
Sep, 2022 | 310 pages
Small book image
Learning Continuous Integration with Jenkins
Nikhil Pathania
Jan, 2024 | 396 pages
Table of Contents (15 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Download the color images
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1: The Fundamentals of GitOps and Argo CD
Part 1: The Fundamentals of GitOps and Argo CD
Free Chapter
2
Chapter 1: GitOps and Kubernetes
Chapter 1: GitOps and Kubernetes
Technical requirements
What is GitOps?
Kubernetes and GitOps
Imperative and declarative APIs
Building a simple GitOps operator
IaC and GitOps
Summary
Further reading
3
Chapter 2: Getting Started with Argo CD
Chapter 2: Getting Started with Argo CD
Technical requirements
What is Argo CD?
Core concepts and vocabulary
Explaining architecture
Synchronization principles
Summary
Further reading
4
Part 2: Argo CD as a Site Reliability Engineer
Part 2: Argo CD as a Site Reliability Engineer
5
Chapter 3: Operating Argo CD
Chapter 3: Operating Argo CD
Technical requirements
Declarative configuration
Setting up an HA installation
Planning for disaster recovery
Enabling observability
Notifying the end user
Summary
Further reading
6
Chapter 4: Access Control
Chapter 4: Access Control
Technical requirements
Declarative users
Service accounts
Single sign-on
Summary
Further reading
7
Part 3: Argo CD in Production
Part 3: Argo CD in Production
8
Chapter 5: Argo CD Bootstrap K8s Cluster
Chapter 5: Argo CD Bootstrap K8s Cluster
Technical requirements
Amazon EKS with Terraform
Bootstrapping EKS with Argo CD
Using the app of apps pattern
Bootstrapping in practice
Summary
Further reading
9
Chapter 6: Designing Argo CD Delivery Pipelines
Chapter 6: Designing Argo CD Delivery Pipelines
Technical requirements
Motivation
Deployment strategies
A real CI/CD pipeline
Keeping secrets safe
Microservices CI/CD
Monorepo microservices
Summary
Further reading
10
Chapter 7: Troubleshooting Argo CD
Chapter 7: Troubleshooting Argo CD
Technical requirements
Initial setup
Addressing day-to-day issues
Improving performance
Summary
Further reading
11
Chapter 8: YAML and Kubernetes Manifests
Chapter 8: YAML and Kubernetes Manifests
Technical requirements
Working with templating options
Exploring types of validation
Validating a Kubernetes schema
Enforcing best practices for your manifests
Performing extended checks with conftest
Summary
Further reading
12
Chapter 9: Future and Conclusion
Chapter 9: Future and Conclusion
Technical requirements
Democratizing GitOps
What is GitOps Engine?
What is kubernetes-sigs/cli-utils?
Wrap up
Summary
Further reading
13
Index
Index
Why subscribe?
14
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

What is GitOps?

The term GitOps was coined back in 2017 by people from Weaveworks, who are also the authors of a GitOps tool called Flux. Since then, I have seen how GitOps turned into a buzzword, up to being named the next important thing after development-operations (DevOps). If you search for definitions and explanations, you will find a lot of them: it has been defined as operations via pull requests (PRs) (https://www.weave.works/blog/gitops-operations-by-pull-request) or taking development practices (version control, collaboration, compliance, continuous integration/continuous deployment (CI/CD)) and applying them to infrastructure automation (https://about.gitlab.com/topics/gitops/).

Still, I think there is one definition that stands out. I am referring to the one created by the GitOps Working Group (https://github.com/gitops-working-group/gitops-working-group), which is part of the Application Delivery Technical Advisory Group (Application Delivery TAG) from the Cloud Native Computing Foundation (CNCF). The Application Delivery TAG is specialized in building, deploying, managing, and operating cloud-native applications (https://github.com/cncf/tag-app-delivery). The workgroup is made up of people from different companies with the purpose of building a vendor-neutral, principle-led definition for GitOps, so I think these are good reasons to take a closer look at their work.

The definition is focused on the principles of GitOps, and five are identified so far (this is still a draft), as follows:

  • Declarative configuration
  • Version-controlled immutable storage
  • Automated delivery
  • Software agents
  • Closed loop

It starts with declarative configuration, which means we want to express our intent, an end state, and not specific actions to execute. It is not an imperative style where you say, “Let’s start three more containers,” but instead, you declare that you want to have three containers for this application, and an agent will take care of reaching that number, which might mean it needs to stop two running containers if there are five up right now.

Git is being referred to here as version-controlled and immutable storage, which is fair because while it is the most used source control system right now, it is not the only one, and we could implement GitOps with other source control systems.

Automated delivery means that we shouldn’t have any manual actions once the changes reach the version control system (VCS). After the configuration is updated, it comes to software agents to make sure that the necessary actions to reach the new declared configuration are being taken. Because we are expressing the desired state, the actions to reach it need to be calculated. They result from the difference between the actual state of the system and the desired state from the version control—and this is what the closed loop part is trying to say.

While GitOps originated in the Kubernetes world, this definition is trying to take that out of the picture and bring the preceding principles to the whole software world. In our case, it is still interesting to see what made GitOps possible and dive a little bit deeper into what those software agents are in Kubernetes or how the closed loop is working here.

Previous Section
End of Section 3
Next Section