How do you set up your application stack?

What tools do you use to provision your Kubernetes cluster?

I started with plain YAML files, but I find it a bit hard to keep them organized and make changes.

Right now, I try Pulumi but I am keen to learn other tools.

Do you have experience with any other tools? How does your workflow for creating applications, services, etc. in your cluster look like?

---

If you like my content, you might want to follow me on Twitter?! @fullstack_to

Cover Image by Photo by Syed Hussaini on Unsplash

Comments

[Troy]

Hi,

We deploy using the following process:

DEV commit code to SCM > Pull Request > Webhook in Jenkins > Unit tests, Sonarqube integration > Build Docker Image \ tag it \ push to AWS ECR > Integration tests > Deploy tagged image from AWS ECR to our AWS EKS cluster > Notify of status

Secrets are stored in Ansible playbook in SCM.

YAML files are obviously stored in SCM, which is stored in each repo in a directory called .\kubernetes

[taragurung]

Secrets are stored in Ansible playbook in SCM. What does this really mean?

[Troy]

Misworded, secrets are stored in a yaml file, which is encrypted. ansible-vault is used to encrypt/decrypt. The playbook references the secrets.

[taragurung]

Yes, ansible-vault

[David J Eddy]

"...Secrets are stored in Ansible playbook in SCM..." We talking API keys / web tokens?

[Troy]

Yes, oAuth & DB connection strings

[Matthias 🤖]

Do you use Jenkins or Jenkins X?
I didn't use Jenkins recently. Can you give any tips for using Jenkins in a Kubernetes environment?

[Troy]

Hi,

Jenkins (not X) is used. Something similar to this with environmental variables defined for k8sClusterCredentialName and k8sMasterUrl

withKubeConfig([credentialsId: "${getConfigValue('k8sClusterCredentialName')}", serverUrl: "${getConfigValue('k8sMasterUrl')}"]) {
                    sh 'kubectl apply -f ./kubernetes/'
                }