Production-Ready Kubernetes Clusters Using Crossplane Compositions
HTML-код
- Опубликовано: 26 ноя 2024
- Production-ready Kubernetes clusters require not only infrastructure but also third-party applications and services running inside such clusters from the get-go. Crossplane compositions enable us to combine all that. AWS, Azure, Google, and other cloud providers can be used to manage infrastructure. When those are combined with Helm and Kubernetes providers, we have everything we need defined as a single claim.
▬▬▬▬▬▬ 🔗 Additional Info 🔗 ▬▬▬▬▬▬
➡ Gist with the commands: gist.github.co...
🎬 Crossplane: • Crossplane - GitOps-ba...
🎬 Crossplane Composites: • How To Shift Left Infr...
Victor is just too good to be free :D
Very useful video, Victor - thanks, as always!
Awesome content. I love the idea of using crossplane to provision cloud infrastructure. What do you think about using crossplane to install only ArgoCD in the eks cluster, and letting ArgoCD deploy things like istio, prometheus, grafana as ArgoCD Applications? I find ArgoCD slightly less verbose for installing manifests 😅
Hi Victor, I have just started with Crossplane and struggling to put together a very basic composition - claim demo, ie a VPC + subnet group with the official upbound provider. Do you perhaps have something like that?
the required permissions to manage kubertentes clustes using crossplane
Nice! I'll try to test it soon.
Maybe while screen sharing it could be better to get resources and pipe with less (get .. -o yaml |less) such that you can search in the text by keywords and not scroll up and down :)
You're right. I should do that.
Cant wait till "How to make your K8s cluster GitOps ready (for production)" video... ⏰🤔🫖
That's coming in January. It'll be a live webinar.
@@Upbound Just wanna say that ou've one day left ;-) best regards
Sorry for not responding earlier. It's been published a while ago on this channel :)
How can you update a release installed through the clusterclaim composition without recreating the clusterclaim. I would like to upgrade the external secrets helm release
found out, I need to build a new provider tag with the version I needed
here we have a little chicken-egg problem: how to create the "managing k8s cluster containing crossplane"?
is there any CLI or feature to initialise the managing k8s cluster and deploy crossplane on that?
otherwise to init everything we should fall back to something like Terraform...
You can use Upbound cloud to get a managed crossplane.
How would you import metadata from other resources to the crossplane claims/compositions, e.g. tags or some other useful existing metadata on other existing resources in kubernetes.
Great demo 👏
If the external name annotation is the same as the actual name of the resource, crossplane will take over management of that resource. However, it will update the resource to be exactly the same as the manifest so that might result in a change that you might not want. I'm not sure whether that's what you were asking.
How would you deal with environment where there are multiple AWS accounts and GCP Projects. I would like to have one central cluster where crossplane is deployed and from there manage infrastructures of various AWS accounts/GCP Projects.
Do I need to create a provider for each account / Projects ?
You would need multiple providers.
Great demo, thank you !
As you mentioned, the Composition manifest is pretty big and I guess it could be hard to maintain : is it possible to split it into multiple manifests ? Maybe Crossplane has something like an 'include' field to merge several manifest parts into one ? Or maybe we could use helm or kustomize overlays to split this mega-manifest and ease writing and maintenance...?
I tend to create Configuration Packages that wrap things up in a way that I can easily assemble/group stuff I need. I haven't used them in that video because I wanted to explore them separately. Have you seen ruclips.net/video/i7MFiInJV8c/видео.html
@@Upbound not yet but I will soon 😉
Thank you 👍
How to access the UI of the ArgoCD server deployed on EKS cluster ? I have tried port forwarding but can't get the password right. The password I am trying is the one I found in composition.yaml in patches section and username is admin.
Looks amazing, just tried it and ran into an error at this step:
kubectl --namespace a-team apply --filename examples/aws-eks.yaml
RUclips has been deleting my comments so am trying to break this up into multiple.
Can't post the error directly cause youtube deletes it so here it is some of it.
no matches for kind ClusterClaim in version ...
Can you ping me on crossplane or CNCF slack? My user is vfarcic.
is it possible to use Kustomize instead of Helm?
Right now there is no kustomize provider. It would be a nice addition though.
@@Upbound what a pity!! I think that at least Helm and Kustomize are a must to have... not everything has an helm chart and not everybody is willing to use helm
@@matteobaiguini5940 I agree and I'm sure it'll come. It's only a question when, not if. Crossplane is an open source project and different people work on different providers. Would you be interested working on a Kustomize provider? If yes, I can help you get going.
@@Upbound thanks for the offer, but I'm really busy with other projects at the moment. But that would be definitely cool!