The journey to Kubernetes tends be long and tedious as it involves many changes including the CI/CD tool chain. Far from the HelloWorld demo, we will present a real feedback with a solution relying on the GitOps approach without forgetting the legacy world of traditional infrastructures ! The declarative approach — brought by the DevOps movement and enforced by Kubernetes/GitOps — brings a lot of power using Git as the Source of Truth and integrate easily in the enterprise with dozens of applications and IT environments. All these changes shake up more than ever the established assumptions, the existing tooling, the organizational structure and people. This talk is about challenges and solutions identified during our journey in which security and automation are at the heart
Report
Share
Report
Share
1 of 37
Download to read offline
More Related Content
Yann Albou & Sébastien Féré - GitOps as a way to manage enterprise K8s and virtual machines: feedback !
9. DevOpsDays Geneva 2020
#1. Declarative
The entire system is described
declaratively
#3. Kubernetes Operator
Approved changes to the desired state are
automatically applied to the system
#4. Continuous Observability
Software agents ensure correctness and
alert on divergence
Sync & Alert
#2. Git as Single Source of Truth
Declarative changes let you think of changes
as transactions
10. DevOpsDays Geneva 2020
GitOps is the best thing since configuration as code. Git
changed how we collaborate, but declarative configuration
is the key to dealing with infrastructure at scale, and sets
the stage for the next generation of management tools.
Kelsey Hightower
From pets, to cattle… to herds
13. DevOpsDays Geneva 2020
#1. Declarative
The entire system is described
declaratively
#2. Single Source of Truth
Declarative changes let you think of
changes as transactions
#3. Kubernetes Operator
Approved changes to the desired state are
automatically applied to the system
#4. Continuous Observability
Software agents ensure correctness and
alert on divergence
Sync & Alert
14. DevOpsDays Geneva 2020
CI pipeline for Payment
CI pipeline for Inventory
Multi-Applications / Multi-Components
28. DevOpsDays Geneva 2020
GitOps in the Enterprise…
ProductionSource CodeDevelopment BinariesBuild Deployment AcceptanceIntegration
Docker images
Base & Application
SIT UAT PRDApp ManifestK8S Templates
29. DevOpsDays Geneva 2020
GitOps everything !
DEV SIT UAT PRDLAB
Promotion towards Production
Bunch of commits on the “dev” branch
- any cluster upgrade
- any structural change in the configurationContinuous Integration
- Test new capabilities
- Rebuilt every night
30. DevOpsDays Geneva 2020
GitOps everything !
DEV SIT UAT PRDLAB
Promotion towards Production
Continuous Integration
- Test new capabilities
- Rebuilt every night
Merged onto an intermediate branch
- resolve possible conflicts
- set target environment config
31. DevOpsDays Geneva 2020
GitOps everything !
DEV SIT UAT PRDLAB
Promotion towards Production
Continuous Integration
- Test new capabilities
- Rebuilt every night
Pull-Request to the target “sit” branch
- can’t bring more transparency
- built-in approvals
33. DevOpsDays Geneva 2020
Takeaways
Journey to Kubernetes
Docker registries
Cloud Native Applications
CI pipeline & Shift-Left
GitOps
Cloud-Native practice
Works in the Enterprise
Some limitations (ex. push)
Adapt tooling to address Legacy Infrastructure
Single Source of Truth as a “DevOps enforcer”