GitOps in a nutshell (Montreal CNCF meetup May 2024)
Download as PPTX, PDF0 likes14 views
Find out what GitOps is exactly, and how to use it with a Kubernetes cluster, through this Lightning Talk where all the necessary will be explained to you : genesis, pillars, real use cases and finally a visual and practical example of a GitOps flow. The goal here is to give you the best possible introduction to GitOps and spark your interest to explore it further on your own!
GitOps in a nutshell (Montreal CNCF meetup May 2024)
- 2. Lucien Boix ▪ 38 ans, both French and Canadian ▪ From Lyon (France) ▪ Living since 2013 in Montreal (Canada) ▪ DevOps Specialist (SRE) ▫ at 360.Agency ▫ Tools and hundreds of websites for car dealerships 2
- 4. Quick timeline 4 2013 2014 201 7 Release of Docker Release of Kubernetes The term “GitOps” first appeared in 2017 in a blog post by Alexis Richardson (co-founder and CEO of Weaveworks, which closed in 2024)
- 5. “ It’s a methodology for developer tooling to drive operations. This post discussed the use of declarative tools and best practices of configurations being code and therefore should be version 5
- 6. Story in 2016 at Weaveworks ▪ Risky planned change ▪ Kubernetes clusters wiped in AWS ▪ The entire stack was rebuilt in 45 minutes ▪ All configurations were in Git ▫ They were pushing themselves to do it ▫ 1 change in production = 1 commit ▪ "Why not automate it?" 6
- 7. GitOps Principles v1.0.0 (lien) in 2021 7 The 4 pillars of GitOps
- 8. The 4 pillars in GitOps 8 Declarative The desired state of the system is defined declaratively Versioned & immutable The desired state of the system is versioned in Git Approved changes are automatically applied to the the system by an agent (running inside the system) Automatic pull This agent (running inside the system) also detects and corrects the drift Reconciliation
- 10. GitOps tools for Kubernetes ▪ FluxCD (open source) ▫ Created by Weaveworks ▫ Given to the CNCF in 2019 ▫ Light, no UI, notifications (Slack, Teams, Discord, etc.) ▫ Can watch multiple repos (Sources) ▫ Abundant documentation 10
- 11. ▪ ArgoCD (open source) ▫ More developer centered than Flux (which is more SRE), UI out of the box ▫ More features (manual sync, maintenance window) ▪ Jenkins X (open source) GitOps tools for Kubernetes 11
- 13. Here is the scope of our example 13
- 14. 3 colleagues are working on this app ▪ Wants to deploy a new release of the app ▪ Wants to tune the allocated resources ▫ By slightly increasing the memory limit ▪ Wants to change an environment variable ▫ Turning off the cache for a test 14
- 15. 15
- 16. If previous embedded video is broken or does not play, use this link: https://www.youtube.com/watch?v=_m_-TWw6i2A 16
- 17. 17 Takeaways
- 18. Takeaways ▪ GitOps is a philosophy (best practices) for managing, deploying and monitoring containers ▪ GitOps also changes the way of working in a company ▫ Developers have ownership of the lifecycle of their applications ▫ We are required to communicate (through MR 18
- 19. Takeaways ▪ Improved productivity ▫ Fewer errors, lower costs ▫ No need to involve another team for deployment / rollback, fewer procedures / runbooks ▪ Enhanced security ▫ Native audit from Git, everything is traceable 19
- 20. Takeaways ▪ In the end: a good balance between control and delivery speed ▪ A few best practices ▫ commit ID in the name of the built image ▫ pipeline does not have direct access to the system ▫ pipeline runs syntax tests 20
- 21. 21 Going further
- 22. Auto-Image Update ▪ The agent scans the registry according to our rules ▫ Minor release for a dependency (nginx, etc.) ▪ If a new image is uploaded, the agent deploys it ▫ Using a commit / push of course Going further 22
- 23. Going further Exploring Infrastructure As Code (IaC) in general ▪ Philosophy : no more manual setup ▪ Brings reliability, visibility, reduces costs We can also manage changes with a Git repository for : ▪ Infrastructure (instances setup) ▪ Network (routing rules, firewalls) ▪ Access (list of authorized accounts) 23
- 25. Credits This slide template was created and made available for free by SlidesCarnival 25