Skip to content
This repository has been archived by the owner on Apr 5, 2024. It is now read-only.

feat: local deployment #117

Draft
wants to merge 90 commits into
base: hasura
Choose a base branch
from
Draft

feat: local deployment #117

wants to merge 90 commits into from

Conversation

revolunet
Copy link
Member

@revolunet revolunet commented Oct 22, 2022

Ajout d'un env local de démo

Pourrait être utilisé pour des tests e2e aussi ?

Todo:

  • hostPath
  • config.yaml dependant on env ? (ex: noPlainSecrets) or assume it in remote config when env=local

Instructions

Run cd ./kontinuous/kind && ./setup-cluster.sh to create a fresh kind cluster

Kontinuous adjustments for local deploy :

  • if you have some build jobs, you'll need a local docker registry
  • set dependencies.fabrique.dependencies.contrib.validators.noPlainSecrets to false in .kontinuous/config.yaml if you want to enable plain kube secrets (vs sealed-secrets)
  • based on dev env, create .kontinous/env/local and adjust values.yaml and templates if any. (ex: secrets)
  • if you want to automatically have *.test domains, install dnsmasq for .test domains on your local machine (example)

run kontinuous deploy --env local with KUBECONFIG pointing to your kind cluster kube config.

Julien Bouquillon and others added 30 commits June 7, 2022 21:33
* feat(main): add talisman

* fix(talisman): use scope: node
* init

* fix: upgrade builtin keycloak-theme for docker-compose

* wip

* wip

* wip

* fix

* test

* fix: demo realm

* fix

* fix

* fix

* fix(keycloak): better logout

* more roles

* clean

* kontinuous

* fix

* fix: rename app

* fix

* fix

* docs: update

* docs: update

* fix keycloak service name

* fix: migration

* fix NEXT_PUBLIC_HASURA_GRAPHQL_ENDPOINT_URL

* fix NEXT_PUBLIC_HASURA_GRAPHQL_ENDPOINT_URL

* fix

* seeds

* seeds

* seeds

* add statefulsetAnnotations

* add statefulsetAnnotations

* add statefulsetAnnotations

* add statefulsetAnnotations

* add statefulsetAnnotations

* add statefulsetAnnotations

* add statefulsetAnnotations

* dummy

* fix seed pgSecretName

* fix

* fix

* fix

* fix precommit

* debug

* fix-ingress

* fix: fix DSFR and next/link issues

* fixlock

* fix: icons

* fix

* Update .env.production

* Update .env.staging

* Update hasura.ts

* fix code orga

* fix: remixicon remove cdn

* upgrade

* fix: better docker-compose

* Update README.md

* Update ks-review.yaml

* Update ks-review.yaml

* Update ks-review.yaml

* Update ks-review.yaml

* doc: add talisman note

* Update README.md

* fix: add projectName

* fix: rename to workflow-webhook.yaml

Co-authored-by: Jo <[email protected]>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@gitguardian
Copy link

gitguardian bot commented Oct 22, 2022

⚠️ GitGuardian has uncovered 8 secrets following the scan of your pull request.

Please consider investigating the findings and remediating the incidents. Failure to do so may lead to compromising the associated services or software components.

🔎 Detected hardcoded secrets in your pull request
GitGuardian id Secret Commit Filename
4794696 RSA Private Key b5b7b89 .kontinuous/env/local/templates/kubeconfig.yaml View secret
4794696 RSA Private Key f78fe7f .kontinuous/env/local/templates/kubeconfig.yaml View secret
4798024 RSA Private Key f78fe7f .kontinuous/env/local/templates/kubeconfig.yaml View secret
4798024 RSA Private Key 1dc17fe .kontinuous/env/local/templates/kubeconfig.yaml View secret
4845101 RSA Private Key 1dc17fe .kontinuous/env/local/templates/kubeconfig.yaml View secret
4845101 RSA Private Key 1dc17fe .kontinuous/kind/kubeconfig.yaml View secret
4845101 RSA Private Key c6c21a5 .kontinuous/env/local/templates/kubeconfig.yaml View secret
4845101 RSA Private Key c6c21a5 .kontinuous/kind/kubeconfig.yaml View secret
🛠 Guidelines to remediate hardcoded secrets
  1. Understand the implications of revoking this secret by investigating where it is used in your code.
  2. Replace and store your secrets safely. Learn here the best practices.
  3. Revoke and rotate these secrets.
  4. If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.

To avoid such incidents in the future consider


🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.

Our GitHub checks need improvements? Share your feedbacks!

@github-actions github-actions bot temporarily deployed to template-local October 22, 2022 00:28 Destroyed
@revolunet revolunet changed the title Local feat: local deployment Nov 15, 2022
@github-actions github-actions bot temporarily deployed to template-local November 15, 2022 09:18 Destroyed
@github-actions github-actions bot temporarily deployed to template-local November 15, 2022 09:21 Destroyed
@github-actions github-actions bot temporarily deployed to template-local November 15, 2022 09:28 Destroyed
@github-actions github-actions bot temporarily deployed to template-local November 15, 2022 13:09 Destroyed
@github-actions github-actions bot temporarily deployed to template-local November 15, 2022 13:37 Destroyed
@github-actions github-actions bot temporarily deployed to template-local November 15, 2022 15:31 Destroyed
@sonarcloud
Copy link

sonarcloud bot commented Nov 15, 2022

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
No Duplication information No Duplication information

@github-actions github-actions bot temporarily deployed to template-local2 November 15, 2022 16:00 Destroyed
@github-actions github-actions bot temporarily deployed to template-local3 November 15, 2022 16:01 Destroyed
@github-actions github-actions bot temporarily deployed to template-local4 November 15, 2022 16:02 Destroyed
@github-actions github-actions bot temporarily deployed to template-local5 November 17, 2022 08:32 Destroyed
@github-actions github-actions bot temporarily deployed to template-local6 November 17, 2022 08:32 Destroyed
@github-actions github-actions bot temporarily deployed to template-local7 November 17, 2022 08:32 Destroyed
@github-actions
Copy link

🎉 Deployment for commit 57ff1e3 :

Ingresses
Docker images
  • 📦 docker pull ghcr.io/socialgouv/kontinuous/wait-needs:v1
  • 📦 docker pull harbor.dev.fabrique.social.gouv.fr/fabrique/template/app:sha-57ff1e30b51dbe8c7917a3e7aaaa267ac7479d98
  • 📦 docker pull harbor.dev.fabrique.social.gouv.fr/fabrique/template/hasura:sha-57ff1e30b51dbe8c7917a3e7aaaa267ac7479d98
Debug

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

6 participants