Thanks to visit codestin.com
Credit goes to github.com

Skip to content

garritfra/infra

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

87 Commits
.git-crypt
.git-crypt
 
 
.github
.github
 
 
ansible
ansible
 
 
k8s
k8s
 
 
terraform
terraform
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.trivyignore
.trivyignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
trivy.yaml
trivy.yaml
 
 

Repository files navigation

infra

This repository serves as the single source of truth for my infrastructure.

NOTE: The repo used to contain secrets, so I decided to dump the history and start fresh. No more secrets (hopefully)!! The previous history can be found in the private "infra-archive" repository

Kubernetes

Cluster bootstrapping

  1. Spin up a cluster
  2. Make sure the node you're setting up can read the repository
  3. flux bootstrap git --url=ssh://[email protected]/garritfra/infra --branch=main --private-key-file=.ssh/id_ed25519 --path=k8s/clusters/infra-k8s-01
  4. Save age cluster key as age-key.txt
  5. cat age.agekey kubectl create secret generic infra-sops-age-key --namespace=infra-base --from-file=age.agekey=/dev/stdin

Encrypt Secrets

  1. Create the secret like you would any other secret
  2. sops --age=<public-key> --encrypt --in-place path/to/secret.yaml
    1. This assumes that you have a .sops.yaml in your directory (TODO: Or at the repo top level?)

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages