-
Notifications
You must be signed in to change notification settings - Fork 5.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
helmfile support #2143
Comments
@estahn, we created a helmfile config managment plugin in order to use helmfile
You will need to add a volume to the repo-server
Then add an init container in order to download helmfile.
And finally add a volumeMount to mount the helmfile binary
|
@adamjohnson01 It sounds like you created something |
@estahn, yes. That is correct. |
I'm interested in this as well. How has your experience been so far @adamjohnson01 and @estahn?
I would be interested in making this a 'first class' plugin. Anyone else interested in collaborating on that effort? |
We have gone ahead and moved things out of the helmfile into Argo apps.
Each helmfile entry is an Argo app in our case.
Overall we wanted to reduce the tooling and ArgoCD replaced 3 tools for us
(helm/tiller, helmfile, another internal tool).
Enrico
…On Thu, 2 Jan 2020 at 4:52 am, Travis Glenn Hansen ***@***.***> wrote:
I'm interested in this as well. How has your experience been so far
@adamjohnson01 <https://github.com/adamjohnson01> and @estahn
<https://github.com/estahn>?
- Do you use ENV vars (
https://argoproj.github.io/argo-cd/user-guide/config-management-plugins/#environment
... specifically defined in the spec) in your helmfile?
- Have you run into any issues where separate helmfiles use the same
repo name but point to differing repos?
- How do you handle --kube-version (helm v2) or --api-versions (helm
v3)?
- Do custom config management plugins have access in some shape or
form to the application data such as cluster endpoint etc (I'd like to
be able to run kubectl api-versions for example to alter the
command...see above question)?
I would be interested in making this a 'first class' plugin. Anyone else
interested in collaborating on that effort?
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#2143?email_source=notifications&email_token=AACYNPQETQLIRGP4Z6G7RG3Q3S32VA5CNFSM4ILHQYY2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEH5HSNQ#issuecomment-570063158>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AACYNPR7XKERABE6YCF6HPLQ3S32VANCNFSM4ILHQYYQ>
.
|
Ok thanks for the feedback. |
Out of curiosity what is an Argo app? |
ArgoCD groups resources that belong together as applications. It’s similar
to the release of a helm chart.
See
https://argoproj.github.io/argo-cd/operator-manual/declarative-setup/#applications
Sorry for the short response, I’m on holiday atm :)
…On Fri, 3 Jan 2020 at 8:20 am, Travis Glenn Hansen ***@***.***> wrote:
Out of curiosity what is an Argo app?
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#2143?email_source=notifications&email_token=AACYNPVO4R43X6B4RCQHJPTQ3Y47XA5CNFSM4ILHQYY2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEH7ESHQ#issuecomment-570312990>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AACYNPTSDXJVKVQGEXMHDALQ3Y47XANCNFSM4ILHQYYQ>
.
|
Ah ok sure. I misunderstood your comment as using some argo-created templating engine. You still need ksonnet/jsonnet/helm/etc as templating/packaging engine. Support for In any case I appreciate the feedback. The most recent
After running through several edge-cases and toying around with argo generally, I think it's a great approach and tool. I really like what I'm seeing so far, just the helm support isn't sitting quite right yet for my various use-cases. Legit support for |
We have been fairly extensive users of helmfile before ArgoCD. With ArgoCD
now supporting helm natively there is simply no need for helmfile in my
opinion.
We’re using the app of apps pattern to replicate the helmfile setup. The
values go into the application CR, so it has a good separation without lots
of files flying around. Each repo has a .argocd.yaml (containing the app
CR) which is applied by our CI tools.
As for 2, I don’t see how it’s not gitops but then in my opinion gitops is
being dogmatised to some extend.
As for 3, you can achieve this with helm
umbrella charts or app of apps.
Travis, if you wish I can elaborate more on this on Monday.
Enrico
…On Fri, 3 Jan 2020 at 7:32 pm, Travis Glenn Hansen ***@***.***> wrote:
Ah ok sure. I misunderstood your comment as using some argo-created
templating engine. You still need ksonnet/jsonnet/helm/etc as
templating/packaging engine. Support for helmfile in argo simply let's
you more easily declare multiple helm releases (as it were) to be a
single argo app.
In any case I appreciate the feedback. The most recent helm work in argo
still doesn't feel quite right to me (I'm pretty new so I could be missing
something). Proper helmfile support seems like the ideal solution (for
me):
1. separation of config files from chart(s) (for 2 reasons, not
storing config in the chart repo AND makes it easier to consume 3rd-party
charts since you don't have to duplicate chart source code)
2. ability to manage apps via gitops (the new helm support isn't
really gitops unfortunately)
3. ability to deploy more than 1 chart as part of an app as you
mentioned above
After running through several edge-cases and toying around with argo
generally, I think it's a great approach and tool. I really like what I'm
seeing so far, just the helm support isn't sitting quite right yet for my
various use-cases. Legit support for helmfile would knock those out real
quick while also going well beyond in terms of capabilities.
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#2143?email_source=notifications&email_token=AACYNPVEHKKB22SJZTC3WBTQ33LWRA5CNFSM4ILHQYY2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEIAM56I#issuecomment-570478329>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AACYNPRPVARCUXB5LYVRFMDQ33LWRANCNFSM4ILHQYYQ>
.
|
For any future folks stumbling upon this I've created a small project over here starting to integrate It has full support for environments/selectors (including setting them dynamically via Anyone wishing to collaborate is welcome :) After it settles a bit I may look into building it out as a first class plugin to the project. |
awesome community ! This is what i achieved/ I let developers use the same helmfile to run their apps locally. I let .env file is the single source of truth for both:
This is a real example of my approach : https://github.com/abdennour/go-to-do-app I am with reducing tools @estahn and i agree with you. |
+1 |
After hours of frustration from messing around with an init container to install helmfile + helm plugin, I've found the following docker image: https://hub.docker.com/r/chatwork/argocd-helmfile Includes (most likely) everything you need to run helmfile within argocd outside the box! |
I would also vote for a first-class support of helmfile in ArgoCD. Helm unbrella chart is very limiting - it does not support templating in values, so if you have 2 charts sharing some piece of configuration like for example DB user login and both server and client charts as dependencies, you will have to specify the very same value 2 times. Another really killing feature of helmfile is is natural support (through vals library) of many secret backends out of the box, so you can just reference the location of the secret and provide required env params (like VAULT_ROLE_ID and VAULT_SECRET_ID) to the ArgoCD app and voila - you have working secret injection: As for using App of App patterns from ArgoCD, problem with this approach is that it requires to deploy and use ArgoCD in every scenario including developer working on his personal laptop. If to give an analogy the way I see it, you can consider:
In such vision, Helmfile first level support becomes a logical next step :) BTW, Helmfile integration is already added to the tools like Jenkinx-X and Codefresh: |
I agree with @GolubevV. |
May we reopen the ticket? I am not sure "custom_tools" can help to address the problem. The tool https://github.com/travisghansen/argo-cd-helmfile as @travisghansen mentioned is active but I expect something from the mainstream support (aka the first-class support as @GolubevV shared). |
+1 |
I don't love Argo CD directly handling plaintext secrets, because those end up on the repo-server disk, in redis, and (potentially) in Argo CD API responses (e.g. in diffs sent to the UI). But I'm not super familiar with the other features provided by helmfile, and I don't think plugins are full-featured enough yet to offer support on-par with a native experience. So re-opening for further discussion. :-) |
What leads you to believe helmfile usage would result in plain text secrets? I’m interested in knowing if those who have used my plugin find something lacking in the integration and if so what those things are? If it’s generally considered to be feature complete then we could look at replicating the functionality into core. |
It might not. @GolubevV just pointed out that helmfile makes it really easy to integrate with external secrets providers like Vault. That integration would rely on loading some Vault access secret into the repo-server (either by env var or by file) and then using that Vault access to inject secrets into manifests which are stored on the repo-server and in redis and potentially returned by API requests. So helmfile support doesn't necessitate repo-server handling plaintext secrets. But if that use case is one of the main reasons to use helmfile in Argo CD, adding helmfile support might result in a lot of people following that pattern.
I'd be curious about that too! If there are features which are not currently possible in the plugin, I'd be interested in improving Argo CD's plugin functionality set so that the plugin can provide those features. |
+1 Would like to see this |
+1 I also would love to see first-class support for helmfile. As @GolubevV said, having parity between using helmfile both with and without ArgoCD goes a long way toward allowing for 'turnkey' installations of large and more complex deployments with the style of management you want....either with or without GitOps. |
+1 Would like to see this |
As it seems helmfile is not planned to be a first-class thing in argocd, the way to go is to define a plugin using the sidecar approach. |
Hi Luc thanks, working as expected :) We're really looking into Helmfile support, especially for public Helm charts (without the need to mirror them internally). I've tested your plugin with a basic Helmfile file :
I guess official support in Argo CD could bring a way to differentiate Kustomize / Helm / Helmfile in the GUI... |
We plan to have somewhat better UI support for plugins in 2.6. :-) #9216 |
Looking forward to see that 👍
…On Thu, Nov 3, 2022 at 1:52 PM Michael Crenshaw ***@***.***> wrote:
We plan to have somewhat better UI support for plugins in 2.6. :-) #9216
<#9216>
—
Reply to this email directly, view it on GitHub
<#2143 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AABMRBU63UPMEYIISFGCZZLWGOYRBANCNFSM4ILHQYYQ>
.
You are receiving this because you commented.Message ID:
***@***.***>
|
Thanks a lot @Fredouye for your feedback. |
I'm looking for the support too. My case is to execute some pre-hook command before my deployment, which is kinda impossible with argocd (but possible with helmfile). |
@icy could you give this one a try ? https://github.com/lucj/argocd-helmfile-plugin |
@lucj , thanks a lot. I will take a look at your plugin. |
+10 for first-class I recall seeing somewhere - at some point - a blog that described how to set up Does anyone know/remember what that implementation/pattern/work-around looks like? For example, if you install the @crenshaw-dev - when you mention better support for parameterized plugins, does the ability to change these values/params also fall into that scope (assuming I run |
My hope is that we can make plugin support so good that every plugin is effectively first-class.
Currently, parameters for plugins are read-only in the UI. That's purely because I'm so bad at React that I couldn't get write support to work in the initial PR. But I do plan to add write support. But once that's added, |
Sweet. Thank you for clearing that up @crenshaw-dev ! My "internal customers" are devs & QA that are unfamiliar with a lot of the new tooling I'm putting in place. Even just being able to SEE what values/params are applied is a major value add for them. Thank you again for the hard work on this project. |
I put a PR against Luc's plugin to support generating "parameter announcements," which are how plugins will present parameters to the UI starting in 2.6. The parameters for the Argo CD Helm chart are being dynamically generated based on the chart's values.yaml file. It's still quite ugly, but that's just presentation. It can be improved. The bones are there. |
@crenshaw-dev standing ovation Also, my React & CSS are a bit dated (circa 2017)...I can maybe try to have a look if it's helpful? |
Ahhh, vintage React. 👍 If you're up to try! This is the key code: argo-cd/ui/src/app/applications/components/application-parameters/application-parameters.tsx Lines 301 to 303 in b4c1281
A space-delimited key=value list made sense for other map-style params, because there were generally only a few key/value pairs. But for a chart with 100 parameters, it looks pretty bad. I'm not exactly sure what the better display would look like, but presumably some kind of table. Displaying more nicely is step 1. Step 2 would be making writes work: argo-cd/ui/src/app/applications/components/application-parameters/application-parameters.tsx Lines 304 to 307 in b4c1281
That's the part that really stumped me. |
Hey there, could you felllas guide me through setting this up properly? I have k8s cluster on DigitalOcean and I have ArgoCD installed from their marketplace (the one click setup) so I don't have any yaml files related to ArgoCD locally |
Install instructions for my plugin are here: https://github.com/travisghansen/argo-cd-helmfile |
Yeah, I've checked it out, is there a maybe a more beginner friendly instructions? I'm still kinda fresh to this, trying to figure out what should I edit exactly |
@st3fus as I wrote before the easiest solution which I've used is the https://hub.docker.com/r/chatwork/argocd-helmfile docker image, not sure if you can do that via the digitalocean marketplace as i'm not familiar with that, you would need to modify the image tag in the manifest. |
I have written a blog article explaining how to use Helmfile with ArgoCD's Config Management Plugin feature and the official Helmfile image (https://gcr.io/helmfile/helmfile). Check it out here: https://blog.knell.it/deploying-helm-charts-using-argocd-and-helmfile/ |
Closing since there's a path forward with CMPs (see above) |
Is your feature request related to a problem? Please describe.
Similar to helm, helmfile support would be great.
Describe the solution you'd like
Support for helmfile.
The text was updated successfully, but these errors were encountered: