From 123bf9e6aa221a9246d219d85e18702969e96bbe Mon Sep 17 00:00:00 2001 From: Jonas Hecht Date: Mon, 4 Mar 2024 16:36:40 +0100 Subject: [PATCH] Begin App Deployment paragraph --- .../crossplane-argocd-external-secrets.yml | 2 +- README.md | 63 +++++++++++++++++++ .../crossplane-managed-resources.yaml | 2 +- upbound/provider-aws/resources/bucket.yaml | 47 +++++++++++++- 4 files changed, 111 insertions(+), 3 deletions(-) diff --git a/.github/workflows/crossplane-argocd-external-secrets.yml b/.github/workflows/crossplane-argocd-external-secrets.yml index a1392f2..680842a 100644 --- a/.github/workflows/crossplane-argocd-external-secrets.yml +++ b/.github/workflows/crossplane-argocd-external-secrets.yml @@ -3,7 +3,7 @@ name: crossplane-argocd-external-secrets on: [push] env: - KIND_NODE_VERSION: v1.29.0 + KIND_NODE_VERSION: v1.29.2 # Doppler DOPPLER_SERVICE_TOKEN: ${{ secrets.DOPPLER_SERVICE_TOKEN }} diff --git a/README.md b/README.md index f4868de..9e8c7db 100644 --- a/README.md +++ b/README.md @@ -1152,6 +1152,69 @@ Be sure to create `DOPPLER_SERVICE_TOKEN` as GitHub Repository Secrets. +# App Deployment + +Let's create a publicly accessible S3 bucket in our upbound/provider-aws/resources/bucket.yaml: + +```yaml +apiVersion: s3.aws.upbound.io/v1beta1 +kind: Bucket +metadata: + name: crossplane-argocd-s3-bucket +spec: + forProvider: + region: eu-central-1 + providerConfigRef: + name: default +--- +apiVersion: s3.aws.upbound.io/v1beta1 +kind: BucketPublicAccessBlock +metadata: + name: crossplane-argocd-s3-bucket-pab +spec: + forProvider: + blockPublicAcls: false + blockPublicPolicy: false + ignorePublicAcls: false + restrictPublicBuckets: false + bucketRef: crossplane-argocd-s3-bucket + region: eu-central-1 +--- +apiVersion: s3.aws.upbound.io/v1beta1 +kind: BucketOwnershipControls +metadata: + name: crossplane-argocd-s3-bucket-osc +spec: + forProvider: + rule: + - objectOwnership: ObjectWriter + bucketRef: crossplane-argocd-s3-bucket + region: eu-central-1 +--- +apiVersion: s3.aws.upbound.io/v1beta1 +kind: BucketACL +metadata: + name: crossplane-argocd-s3-bucket-acl +spec: + forProvider: + acl: "public-read" + bucketRef: crossplane-argocd-s3-bucket + region: eu-central-1 +--- +apiVersion: s3.aws.upbound.io/v1beta1 +kind: BucketWebsiteConfiguration +metadata: + name: crossplane-argocd-s3-bucket-websiteconf +spec: + forProvider: + indexDocument: + - suffix: index.html + bucketRef: crossplane-argocd-s3-bucket + region: eu-central-1 +``` + + + # Links diff --git a/argocd/crossplane-resources/crossplane-managed-resources.yaml b/argocd/crossplane-resources/crossplane-managed-resources.yaml index aa58b33..b0c157b 100644 --- a/argocd/crossplane-resources/crossplane-managed-resources.yaml +++ b/argocd/crossplane-resources/crossplane-managed-resources.yaml @@ -11,7 +11,7 @@ spec: project: default source: repoURL: https://github.com/jonashackt/crossplane-argocd - targetRevision: HEAD + targetRevision: app-deployment path: upbound/provider-aws/resources destination: namespace: default diff --git a/upbound/provider-aws/resources/bucket.yaml b/upbound/provider-aws/resources/bucket.yaml index 0fed5f3..986eb77 100644 --- a/upbound/provider-aws/resources/bucket.yaml +++ b/upbound/provider-aws/resources/bucket.yaml @@ -6,4 +6,49 @@ spec: forProvider: region: eu-central-1 providerConfigRef: - name: default \ No newline at end of file + name: default +--- +apiVersion: s3.aws.upbound.io/v1beta1 +kind: BucketPublicAccessBlock +metadata: + name: crossplane-argocd-s3-bucket-pab +spec: + forProvider: + blockPublicAcls: false + blockPublicPolicy: false + ignorePublicAcls: false + restrictPublicBuckets: false + bucketRef: crossplane-argocd-s3-bucket + region: eu-central-1 +--- +apiVersion: s3.aws.upbound.io/v1beta1 +kind: BucketOwnershipControls +metadata: + name: crossplane-argocd-s3-bucket-osc +spec: + forProvider: + rule: + - objectOwnership: ObjectWriter + bucketRef: crossplane-argocd-s3-bucket + region: eu-central-1 +--- +apiVersion: s3.aws.upbound.io/v1beta1 +kind: BucketACL +metadata: + name: crossplane-argocd-s3-bucket-acl +spec: + forProvider: + acl: "public-read" + bucketRef: crossplane-argocd-s3-bucket + region: eu-central-1 +--- +apiVersion: s3.aws.upbound.io/v1beta1 +kind: BucketWebsiteConfiguration +metadata: + name: crossplane-argocd-s3-bucket-websiteconf +spec: + forProvider: + indexDocument: + - suffix: index.html + bucketRef: crossplane-argocd-s3-bucket + region: eu-central-1 \ No newline at end of file