mue
/
obch
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add spinnaker-operator deployment

This commit is contained in:
Björn Busse 2024-02-09 23:53:26 +01:00
parent cdb14ceb88
commit 3ecef05e54
1 changed files with 26 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

26
deploy
View File

@ -13,6 +13,8 @@ SECSCAN_NAMESPACE="security-scan"
readonly SECSCAN_NAMESPACE readonly SECSCAN_NAMESPACE
MONITORING_NAMESPACE="monitoring" MONITORING_NAMESPACE="monitoring"
readonly MONITORING_NAMESPACE readonly MONITORING_NAMESPACE
SPINNAKER_NAMESPACE="cicd"
readonly SPINNAKER_NAMESPACE
PGSQLHA_CHART_VERSION="12.3.7" PGSQLHA_CHART_VERSION="12.3.7"
readonly PGSQLHA_CHART_VERSION readonly PGSQLHA_CHART_VERSION
PGSQLHA_OCI_URL="oci://registry-1.docker.io/bitnamicharts/postgresql-ha" PGSQLHA_OCI_URL="oci://registry-1.docker.io/bitnamicharts/postgresql-ha"
@ -23,6 +25,8 @@ GTFSO_VBB_CHART_VERSION="0.1.0"
readonly GTFSO_VBB_CHART_VERSION readonly GTFSO_VBB_CHART_VERSION
PROM_STACK_CHART_VERSION="55.7.0" PROM_STACK_CHART_VERSION="55.7.0"
readonly PROM_STACK_CHART_VERSION readonly PROM_STACK_CHART_VERSION
SPINNAKER_OPERATOR_CHART_VERSION="1.8.11"
readonly SPINNAKER_OPERATOR_CHART_VERSION
TRIVY_CHART_VERSION="0.18.4" TRIVY_CHART_VERSION="0.18.4"
readonly TRIVY_CHART_VERSION readonly TRIVY_CHART_VERSION
@ -32,6 +36,7 @@ mkdir -p "${FLUX_MANIFEST_PATH}"
kubectl create namespace "${APP_NAMESPACE}" kubectl create namespace "${APP_NAMESPACE}"
kubectl create namespace "${MONITORING_NAMESPACE}" kubectl create namespace "${MONITORING_NAMESPACE}"
kubectl create namespace "${SECSCAN_NAMESPACE}" kubectl create namespace "${SECSCAN_NAMESPACE}"
kubectl create namespace "${SPINNAKER_NAMESPACE}"
# Add Deployments / Helm Charts via fluxcd # Add Deployments / Helm Charts via fluxcd
# Add Helm Charts via Flux HelmRelease CRD # Add Helm Charts via Flux HelmRelease CRD
@ -55,6 +60,7 @@ printf "Using flux to create Sources and HelmReleases\n"
--source HelmRepository/bitnami \ --source HelmRepository/bitnami \
--namespace "${APP_NAMESPACE}" \ --namespace "${APP_NAMESPACE}" \
--export > "${FLUX_MANIFEST_PATH}/pgsql-ha.yaml" --export > "${FLUX_MANIFEST_PATH}/pgsql-ha.yaml"
./flux create helmrelease gtfso-import \ ./flux create helmrelease gtfso-import \
--chart charts/gtfso-import \ --chart charts/gtfso-import \
--namespace ${APP_NAMESPACE} \ --namespace ${APP_NAMESPACE} \
@ -78,6 +84,26 @@ printf "Using flux to create Sources and HelmReleases\n"
--source=HelmRepository/prometheus-community \ --source=HelmRepository/prometheus-community \
--export > "${FLUX_MANIFEST_PATH}/prometheus-stack.yaml" --export > "${FLUX_MANIFEST_PATH}/prometheus-stack.yaml"
# Spinnaker
./flux create source helm armory \
--url https://armory.jfrog.io/artifactory/charts/ \
--namespace "${SPINNAKER_NAMESPACE}"
./flux create source helm armory \
--url https://armory.jfrog.io/artifactory/charts/ \
--namespace "${SPINNAKER_NAMESPACE}" \
--export > "${FLUX_MANIFEST_PATH}/source_spinnaker.yaml"
./flux create helmrelease spinnaker \
--chart armory-spinnaker-operator \
--chart-version "${SPINNAKER_OPERATOR_CHART_VERSION}" \
--namespace "${SPINNAKER_NAMESPACE}" \
--source=HelmRepository/armory
./flux create helmrelease spinnaker \
--chart armory-spinnaker-operator \
--chart-version "${SPINNAKER_OPERATOR_CHART_VERSION}" \
--namespace "${SPINNAKER_NAMESPACE}" \
--source=HelmRepository/armory \
--export > "${FLUX_MANIFEST_PATH}/spinnaker.yaml"
# Vulnerability Scan # Vulnerability Scan
./flux create source helm aqua \ ./flux create source helm aqua \
--url https://aquasecurity.github.io/helm-charts/ \ --url https://aquasecurity.github.io/helm-charts/ \