Skip to content

Commit

Permalink
Migrate the helm template CD service to workspaces
Browse files Browse the repository at this point in the history 
Helm chart deployment relies on the cluster PipelineResource
to target deployments of resources.

Migrate that to workspaces: a secret stored in the cluster bound
through a workspace is used to target the deployment.

Secrets have been preprovisioned on the cluster, their name is
tektoncd-, their type is kubeconfig.

See tektoncd#887 for more details.

The change is implemented so that the template interface does not
change and thus all existing cronjobs are still valid.

Signed-off-by: Andrea Frittoli <andrea.frittoli@uk.ibm.com>
  • Loading branch information
@afrittoli
afrittoli committed Jul 22, 2022
1 parent d366d52 commit 67b897c
Showing 1 changed file with 89 additions and 70 deletions.
159 changes: 89 additions & 70 deletions tekton/resources/cd/helm-template.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,89 @@
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
apiVersion: triggers.tekton.dev/v1alpha1
apiVersion: tekton.dev/v1beta1
kind: Task
metadata:
name: deploy-helm-chart
spec:
params:
- name: namespace
description: Namespace to deploy to in the target cluster
- name: chartName
description: The name of the chart to be deployed
- name: chartVersion
description: The version of the chart to be deployed
default: latest
- name: chartRepo
description: The repo from where to install the chart
default: https://kubernetes-charts.storage.googleapis.com/
- name: chartDescription
description: Used for a descriptive TaskRun name
- name: chartParams
description: A comma separated list of key/values
default: ""
- name: preDeployResources
description: >-
Some charts require resources to be deployed firt, usually CRDs.
When provided this should be the URL to a YAML file with resources.
default: ""
workspaces:
- name: targetCluster
description: kubeconfig of the target Cluster/ServiceAccount
stepTemplate:
env:
- name: KUBECONFIG
value: $(workspaces.targetCluster.path)/kubeconfig
- name: CHART_NAME
value: $(params.chartName)
- name: CHART_VERSION
value: $(params.chartVersion)
- name: CHART_REPO
value: $(params.chartRepo)
- name: CHART_PARAMS
value: $(params.chartParams)
- name: NAMESPACE
value: $(params.namespace)
- name: PRE_DEPLOY_RESOURCES
value: $(params.preDeployResources)
steps:
- name: pre-deploy-from-url
image: gcr.io/tekton-releases/dogfooding/kubectl
script: |
#!/bin/sh
set -ex
# Check if we have something to be done
if [ "${PRE_DEPLOY_RESOURCES}" == "" ]; then
echo "No pre-deploy resources to deploy, continue"
exit 0
fi
# Apply the resources to the same namespace
kubectl apply \
--validate=false \
-n ${NAMESPACE} \
-f ${PRE_DEPLOY_RESOURCES}
- name: helm-deploy
image: alpine/helm:3.1.2
script: |
#!/bin/sh
set -ex
echo "Running install/upgrade"
echo "with ${CHART_PARAMS}"
helm upgrade \
--debug \
${CHART_NAME}-tektoncd-maintained \
${CHART_NAME} \
--install \
--version ${CHART_VERSION} \
--repo ${CHART_REPO} \
--namespace=${NAMESPACE} \
--set "${CHART_PARAMS}" \
--wait --timeout 5m
---
apiVersion: triggers.tekton.dev/v1beta1
kind: TriggerTemplate
metadata:
name: deploy-helm-chart
Expand Down Expand Up @@ -45,70 +127,8 @@ spec:
metadata:
generateName: deploy-helm-$(tt.params.chartDescription)-
spec:
taskSpec:
params:
- name: chartName
- name: chartVersion
- name: chartRepo
- name: chartParams
- name: namespace
- name: preDeployResources
resources:
inputs:
- name: targetCluster
type: cluster
stepTemplate:
env:
- name: KUBECONFIG
value: /workspace/$(resources.inputs.targetCluster.name)/kubeconfig
- name: CHART_NAME
value: $(params.chartName)
- name: CHART_VERSION
value: $(params.chartVersion)
- name: CHART_REPO
value: $(params.chartRepo)
- name: CHART_PARAMS
value: $(params.chartParams)
- name: NAMESPACE
value: $(params.namespace)
- name: PRE_DEPLOY_RESOURCES
value: $(params.preDeployResources)
steps:
- name: pre-deploy-from-url
image: gcr.io/tekton-releases/dogfooding/kubectl
script: |
#!/bin/sh
set -ex
# Check if we have something to be done
if [ "${PRE_DEPLOY_RESOURCES}" == "" ]; then
echo "No pre-deploy resources to deploy, continue"
exit 0
fi
# Apply the resources to the same namespace
kubectl apply \
--validate=false \
-n ${NAMESPACE} \
-f ${PRE_DEPLOY_RESOURCES}
- name: helm-deploy
image: alpine/helm:3.1.2
script: |
#!/bin/sh
set -ex
echo "Running install/upgrade"
echo "with ${CHART_PARAMS}"
helm upgrade \
--debug \
${CHART_NAME}-tektoncd-maintained \
${CHART_NAME} \
--install \
--version ${CHART_VERSION} \
--repo ${CHART_REPO} \
--namespace=${NAMESPACE} \
--set "${CHART_PARAMS}" \
--wait --timeout 5m
taskRef:
name: deploy-helm-chart
params:
- name: chartName
value: $(tt.params.chartName)
Expand All @@ -122,8 +142,7 @@ spec:
value: $(tt.params.namespace)
- name: preDeployResources
value: $(tt.params.preDeployResources)
resources:
inputs:
- name: targetCluster
resourceRef:
name: $(tt.params.clusterResource)
workspaces:
- name: targetCluster
secret:
secretName: tektoncd-$(tt.params.clusterResource)

0 comments on commit 67b897c

Please sign in to comment.