Skip to content

NodeScriptLang/infrastructure

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2,989 Commits
.github/workflows
.github/workflows
 
 
.tasks
.tasks
 
 
apps
apps
 
 
infra
infra
 
 
projects
projects
 
 
secrets
secrets
 
 
setup
setup
 
 
.gitignore
.gitignore
 
 
.sops.yaml
.sops.yaml
 
 
README.md
README.md
 
 
Taskfile.yaml
Taskfile.yaml
 
 

Repository files navigation

NodeScript Git Ops

This repo manages Kubernetes manifests and is used as a source-of-truth for all current deployments.

Prerequisites

GCloud

SOPS

Secrets are managed using SOPS. Installing SOPS is required to edit the secrets locally.

  1. Install SOPS:

    brew install sops

  2. Log into GCloud:

    gcloud auth login
gcloud auth application-default login

  3. Edit any secret file with sops:

    sops ./secrets/apps/<env>/<file>.yaml

See Secrets for more info.

Secrets

Adding new secrets

  1. Create an unencrypted k8s secret YAML file in secrets/ac-production.

  2. Encrypt with sops (-e encrypt, -i in-place):

    sops -e -i ./secrets/<group>/<env>/<file>.yaml

  3. Apply with kubectl:

    sops -d ./secrets/<group>/<env>/<file>.yaml | kubectl apply -f -

  4. Commit your changes.

Editing existing secrets

  1. Edit the file with sops:

    sops ./secrets/<group>/<env>/<file>.yaml

  2. Apply with kubectl:

    sops -d ./secrets/<group>/<env>/<file>.yaml | kubectl apply -f -

  3. Commit your changes.

About

NodeScript Infrastructure as Code

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 6

Languages