tigera-operator to argo (v3.28.1)
This commit is contained in:
23
argocd/applications/tigera-operator.yaml
Normal file
23
argocd/applications/tigera-operator.yaml
Normal file
@@ -0,0 +1,23 @@
|
|||||||
|
---
|
||||||
|
apiVersion: argoproj.io/v1alpha1
|
||||||
|
kind: Application
|
||||||
|
metadata:
|
||||||
|
name: tigera-operator
|
||||||
|
namespace: argocd
|
||||||
|
spec:
|
||||||
|
project: k-space.ee
|
||||||
|
source:
|
||||||
|
# also depends on git@git.k-space.ee:secretspace/kube.git
|
||||||
|
repoURL: git@git.k-space.ee:k-space/kube.git
|
||||||
|
targetRevision: HEAD
|
||||||
|
path: tigera-operator
|
||||||
|
destination:
|
||||||
|
server: 'https://kubernetes.default.svc'
|
||||||
|
namespace: tigera-operator
|
||||||
|
syncPolicy:
|
||||||
|
# automated:
|
||||||
|
# prune: true
|
||||||
|
syncOptions:
|
||||||
|
- CreateNamespace=true
|
||||||
|
- ServerSideApply=true # Resource is too big to fit in 262144 bytes allowed annotation size.
|
||||||
|
- Force=true # `--force-conflicts`, according to https://docs.tigera.io/calico/latest/operations/upgrading/kubernetes-upgrade
|
||||||
2
tigera-operator/.gitignore
vendored
2
tigera-operator/.gitignore
vendored
@@ -1 +1 @@
|
|||||||
tigera-operator.yaml
|
*.env
|
||||||
|
|||||||
@@ -1,20 +1,10 @@
|
|||||||
# Calico
|
# Calico (aka Tigera)
|
||||||
|
|
||||||
Calico implements
|
Calico implements [container network interface plugin](https://kubernetes.io/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) which enables inter-pod network with BGP, also advertising Service LB IPs.
|
||||||
[container network interface plugin](https://kubernetes.io/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
|
|
||||||
which enables inter-pod network with BGP, also advertising Service LB IPs.
|
|
||||||
|
|
||||||
# For user
|
Render and apply locally:
|
||||||
|
|
||||||
Nothing specific to point out, this is standard Kubernetes feature
|
|
||||||
|
|
||||||
# For administrator
|
|
||||||
|
|
||||||
Tigera operator was used to deploy Calico:
|
|
||||||
|
|
||||||
```
|
```sh
|
||||||
curl https://raw.githubusercontent.com/projectcalico/calico/v3.28.1/manifests/tigera-operator.yaml -O
|
kustomize build . | kubectl diff -f-
|
||||||
kubectl apply --server-side --force-conflicts -f tigera-operator.yaml
|
kustomize build . | kubectl apply --server-side --force-conflicts -f-
|
||||||
kubectl apply -f application.yaml
|
|
||||||
kubectl -n calico-system create secret generic bgp-secrets --from-literal=password=...
|
|
||||||
```
|
```
|
||||||
|
|||||||
2
tigera-operator/bgp-secrets.env.example
Normal file
2
tigera-operator/bgp-secrets.env.example
Normal file
@@ -0,0 +1,2 @@
|
|||||||
|
# Don't be a dummy by commiting renders with secrets
|
||||||
|
password=
|
||||||
@@ -93,4 +93,4 @@ roleRef:
|
|||||||
subjects:
|
subjects:
|
||||||
- kind: ServiceAccount
|
- kind: ServiceAccount
|
||||||
name: calico-node
|
name: calico-node
|
||||||
namespace: calico-system
|
namespace: calico-system
|
||||||
7
tigera-operator/kustomization.yaml
Normal file
7
tigera-operator/kustomization.yaml
Normal file
@@ -0,0 +1,7 @@
|
|||||||
|
apiVersion: kustomize.config.k8s.io/v1beta1
|
||||||
|
kind: Kustomization
|
||||||
|
|
||||||
|
resources:
|
||||||
|
- https://raw.githubusercontent.com/projectcalico/calico/v3.28.1/manifests/tigera-operator.yaml
|
||||||
|
- ./custom-resources.yaml
|
||||||
|
- ssh://git@git.k-space.ee/secretspace/kube/tigera-operator
|
||||||
Reference in New Issue
Block a user