Cluster Bootstrap

This project is designed to bootstrap an OpenShift cluster using ArgoCD.

Prerequisites

Client

In order to bootstrap this repository you must have the following cli tools:

• oc - Download mac, linux
• kustomize (optional) - Download mac, linux

Bootstrapping a Cluster

1. Verify you are logged into your cluster using oc.
2. Clone this repository to your local environment.

oc whoami
git clone <repo>

Cluster Bootstrap

Execute the following script:

./scripts/bootstrap.sh

The bootstrap.sh script will:

• Install the OpenShift GitOps Operator
• Create an ArgoCD instance in the openshift-gitops namespace
• Bootstrap a set of ArgoCD applications to configure the cluster

See post bootstrap tasks

Sealed Secrets Bootstrap

bootstrap.sh will attempt to deploy sealed-secrets and requires a sealed secret master key to manage existing deployments.

If managing an already bootstrapped cluster, the sealed-secrets key must be obtained from the initial bootstrap (ask the person who initially setup the cluster).

The sealed secret(s) for bootstrap should be located at:

bootstrap/base/sealed-secrets-secret.yaml

If this is the first time bootstrapping a cluster, bootstrap.sh will deploy a new sealed-secrets controller and obtain a new secret if it does not exist.

Additional Configurations

Sandbox Namespace

The sandbox namespace is useable by all authenticated users. All objects in the sandbox are cleaned out weekly.

Additional Docs

• ArgoCD - Repo Specific
• How to add something to the cluster