Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add resource hooks section #77

Merged
merged 1 commit into from
Nov 6, 2024
Merged

add resource hooks section #77

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
68 changes: 60 additions & 8 deletions docs/reference-implementation/installations/idpbuilder/usage.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ index: 2

import ColorOutput from './images/color-output.png';

### Basic usage
## Basic usage

The most basic command which creates a Kubernetes Cluster (Kind cluster) with the core packages installed.

Expand Down Expand Up @@ -40,12 +40,12 @@ idpbuilder create --color



### Example commands
## Example commands

**For more advanced use cases, check out the [Stacks Repository](https://github.com/cnoe-io/stacks).**


#### Create
### Create

Specify the kubernetes version by using the `--kube-version` flag. Supported versions are available [here](https://github.com/kubernetes-sigs/kind/releases).

Expand Down Expand Up @@ -118,7 +118,7 @@ For available flags and subcommands:
idpbuilder create --help
```

#### Get
### Get

Get all relevant secrets. See [this section](how-it-works.md#getting-relevant-secrets) for more information.

Expand All @@ -132,7 +132,7 @@ Get secrets for a package named `gitea`.
idpbuilder get secrets -p gitea
```

#### Delete
### Delete

Delete a cluster named `localdev`.

Expand All @@ -141,7 +141,7 @@ idpbuilder delete --name localdev
```


### Gitea Integration
## Gitea Integration

idpbuilder creates an internal [Gitea](https://about.gitea.com/) server (accessible from your laptop and kind cluster only).
This can be used for various purposes such as sources for ArgoCD, container registry, and more.
Expand Down Expand Up @@ -190,7 +190,7 @@ curl -k -X POST \

</details>

### Custom Packages
## Custom Packages

Idpbuilder supports specifying custom packages using the flag `-p` flag. This flag expects a directory (local or remote) containing ArgoCD application files and / or ArgoCD application set files. In case of a remote directory, it must be a directory in a git repository, and the URL format must be a [kustomize remote URL format](https://github.com/kubernetes-sigs/kustomize/blob/master/examples/remoteBuild.md).
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we also mention that we support too ApplicationSet ?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Let's do that in another PR. This PR was about using resource hooks.


Expand Down Expand Up @@ -263,7 +263,59 @@ You can also view the updated Application spec by going to this address: https:/
The second package directory defines two normal ArgoCD applications referencing a remote repository.
They are applied as-is.

### Exposing Services
## Workflows

In some situations, you need to run imperative jobs such as creating users in your service, managing secrets, or calling APIs.
ArgoCD [Resource Hooks](https://argo-cd.readthedocs.io/en/stable/user-guide/resource_hooks/) are perfect for these scenarios.
These hooks allow you to execute imperative workflows at various stages of the ArgoCD sync process.

For example, you can create a Kubernetes job that runs after a PostgreSQL database is created and ready by using the `PostSync` hook. Here's an example:

<details>
<summary>Example PostgreSQL User Creation Hook</summary>

```yaml
apiVersion: batch/v1
kind: Job
metadata:
name: create-db-user
annotations:
argocd.argoproj.io/hook: PostSync
argocd.argoproj.io/hook-delete-policy: HookSucceeded
spec:
template:
spec:
containers:
- name: create-user
image: bitnami/postgresql:latest
command: ["/bin/bash", "-c"]
args:
- |
PGPASSWORD=$POSTGRES_PASSWORD psql -h postgresql -U postgres <<'EOF'
DO $$
BEGIN
IF NOT EXISTS (SELECT FROM pg_catalog.pg_roles WHERE rolname = 'myapp') THEN
CREATE USER myapp WITH PASSWORD 'mypassword';
GRANT ALL PRIVILEGES ON DATABASE mydatabase TO myapp;
END IF;
END
$$;
EOF
env:
- name: POSTGRES_PASSWORD
valueFrom:
secretKeyRef:
name: postgresql
key: postgres-password
restartPolicy: Never
backoffLimit: 3
```

</details>

More complex examples are available [here](https://github.com/cnoe-io/stacks/blob/main/ref-implementation/keycloak/manifests/keycloak-config.yaml)

## Exposing Services

Idpbuilder comes with [ingress-nginx](https://github.com/kubernetes/ingress-nginx), and this is meant to be used as an easy way to expose services to the outside world.
See [the networking overview section](how-it-works.md#networking) for more information.
Expand Down
Loading