Comments (6)
kfirfer
commented on August 16, 2024
1
Had problems with gpg/pgp , needed to make a lot of changes like gpg_tty, importing the gpg somehow, etc..
Moved to age and everything is much easier and works as intended
ty!
from argo-cd-helmfile.
travisghansen
commented on August 16, 2024
I doubt the custom integration would work with helmfile directly. In my case I use age with centrally managed keys which are published throughout the organization (each cluster has numerous keys available to it, a global key, a cluster key, an env key, etc). To make it all work it requires:
# set env on repo server
- name: SOPS_AGE_KEY_FILE
value: /sops/age/keys.txt
# volume for repo server
- name: age-secret-keys
secret:
secretName: argocd-age-secret-keys
# volume mount for repo server
- mountPath: /sops/age
name: age-secret-keys
# create the secret
apiVersion: v1
kind: Secret
metadata:
name: argocd-age-secret-keys
namespace: argocd
stringData:
keys.txt: |
# place all keys here
from argo-cd-helmfile.
kfirfer
commented on August 16, 2024
I have managed to exec the repo-server pod and import the gpg key
but this error shown:
ERROR: exit status 1 EXIT STATUS 1 STDERR: [helm-secrets] Values filepath '.nucs/dev/us-east/apps/namespaces/homer/helmfile/values-secrets.yaml' is an absolute path. Absolute paths are not allowed. [helm-secrets] File does not exist: .nucs/dev/us-east/apps/namespaces/homer/helmfile/values-secrets.yaml Error: plugin "secrets" exited with error COMBINED OUTPUT: [helm-secrets] Values filepath '.nucs/dev/us-east/apps/namespaces/homer/helmfile/values-secrets.yaml' is an absolute path. Absolute paths are not allowed. [helm-secrets] File does not exist: .nucs/dev/us-east/apps/namespaces/homer/helmfile/values-secrets.yaml Error: plugin "secrets" exited with error
from argo-cd-helmfile.
kfirfer
commented on August 16, 2024
btw I have also upgraded the helmfile version, didnt seems to work (tried with the documented version aswell)
wget -qO /custom-tools/helmfile.tar.gz https://github.com/helmfile/helmfile/releases/download/v0.145.2/helmfile_0.145.2_linux_amd64.tar.gz
tar -zxvf /custom-tools/helmfile.tar.gz -C /custom-tools
chmod +x /custom-tools/helmfile
from argo-cd-helmfile.
kfirfer
commented on August 16, 2024
Forgot that env var HELM_SECRETS_VALUES_ALLOW_ABSOLUTE_PATH was set to false (by the helm-secrets&argocd integration guide)
Checking if its works
from argo-cd-helmfile.
travisghansen
commented on August 16, 2024
Yeah I have gpg functioning as well, but itβs pretty messy to get going.
from argo-cd-helmfile.
Related Issues (20)
- Helmfile is moved HOT 2
- Error: unknown flag: --skip-crds HOT 10
- Passing args to helm HOT 11
- Issues related to sidecar CMP mode HOT 13
- Autodiscover with apps in app HOT 10
- Helm repository not found HOT 13
- adding kustomize transformers: causes breakage HOT 3
- helmfile/vals integration HOT 7
- Namespaces not taken into account HOT 11
- Not allow helm valuesFiles path or Values file as block file with plugin helmfile
- Create Application per Helmfile Release HOT 1
- argo-cd-helmfile.sh discover` failed exit status 1 HOT 1
- Fail to fetch OCI private Helm registry HOT 1
- Integrated ArgoCD plugin parameters support ? HOT 3
- Setting --skip-deps as optional HOT 2
- Not installing crds in folder of helm chart HOT 2
- What about ExternalSecrets instead of sops? HOT 1
- Not able to use secretref+k8s to fetch secrets from Kubernetes Secret object HOT 2
- kubectl context support HOT 3
- Pass helm values from separate repo HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from argo-cd-helmfile.