This repo shows how to set up AKS with advanced networking, private endpoints, Grafana, Postgress, and flux image scanning using pod identity toward Azure Container Registry_.
- Clone/Fork this repo
- Create a GitHub secret holding an Azure Service Principal following this guide: https://github.com/Azure/actions-workflow-samples/blob/master/assets/create-secrets-for-GitHub-workflows.md. Give it access to a subscription that you want to deploy to. Give it the name AZURE_CREDENTIALS.
- Kick off the GitHub Action
- This repo also shows in the git commit https://github.com/fredrkl/flux-podidentity-grafana-setup/commit/44e752473f815d2fc70da77b5185e6b913c423c8 how to apply yaml when the cluster API server is private, or your GitHub action runners lack access by using the az aks command.
- It also shows how to setup private endpoints for storage and azure container registry