Added Readme, initial design document and ADR

ritwik-g · ritwik-g · commit 7f7b621fcefc · 2025-02-09T17:57:46.000+05:30
diff --git a/README.md b/README.md
@@ -1,2 +1,80 @@
-# helm-values-manager
-Helm Values Manager is a Helm plugin designed to simplify configuration and secret management across multiple Kubernetes deployments. It provides an intuitive CLI to define, validate, and securely store configuration values for Helm-based applications.
+# **🚧 This is a work in progress not yet released for usage**
+
+
+# **Helm Values Manager 🚀**
+🔐 **Secure & Manage Helm Configurations and Secrets Easily!**
+
+Helm Values Manager is a **Helm plugin** designed to simplify **configuration and secret management** across multiple **Kubernetes deployments**. It provides an intuitive **CLI** to define, validate, and securely store configuration values for Helm-based applications.
+
+---
+
+## **✨ Features**
+- 🔴 **Deployment-Aware Configuration Management** – Define **global and per-environment configurations**.
+- 🔴 **Secure Secret Storage** – Integrates with
+    - 🔴 **Google Secret Manager**
+    - 🔴 **AWS Secrets Manager**
+    - 🔴 **Azure Key Vault**
+    - 🔴 **HashiCorp Vault**
+    - 🔴 **Git-Secrets**
+    - 🔧 **Easily Extendable** – Implement your own backend using the **SecretManager API**.
+- 🔴 **Autocompletion Support** – Smooth CLI experience with **Typer-based interactive commands**.
+- 🔴 **Validation & Missing Keys Detection** – Avoid misconfigurations with **automated checks**.
+- 🔴 **Extensible Secret Manager** – Easily add new **custom backends** for secret storage.
+- 🔴 **Seamless ArgoCD & Helm Integration** – Works **out-of-the-box** with Helm-based GitOps workflows.
+
+---
+
+## **🚀 Quick Start**
+1️⃣ **Install the Helm Plugin**
+```sh
+helm plugin install https://github.com/your-org/helm-values-manager.git
+```
+
+2️⃣ **Initialize a New Configuration**
+```sh
+helm values-manager init my-release
+```
+
+3️⃣ **Define a Deployment & Add Keys**
+```sh
+helm values-manager add-deployment dev --secrets-backend=aws_secrets_manager
+helm values-manager add-key DATABASE_URL --required --sensitive --path=global.database.url
+```
+
+4️⃣ **Set & Retrieve Secret Values**
+```sh
+helm values-manager add-secret DATABASE_URL=mydb://connection --deployment=dev
+helm values-manager get-secret DATABASE_URL --deployment=dev
+```
+
+5️⃣ **Validate Configurations**
+```sh
+helm values-manager validate
+```
+
+6️⃣ **Generate the Final `values.yaml`**
+```sh
+helm values-manager generate --deployment=dev
+```
+
+---
+
+## **📜 Documentation**
+📖 **[Read the Full Documentation](https://github.com/your-org/helm-values-manager/wiki)**
+💡 **[View the Architecture Decision Record (ADR)](https://github.com/your-org/helm-values-manager/wiki/ADRs/001-helm-values-manager.md)**
+🛠 **[Contribute to the Project](https://github.com/your-org/helm-values-manager/wiki/Contribution/contributing.md)**
+
+---
+
+## **🤝 Contributing**
+Want to help? Check out our **[contribution guidelines](https://github.com/your-org/helm-values-manager/wiki/Contribution/contributing.md)**! We welcome issues, PRs, and feature suggestions. 🎉
+
+---
+
+## **📌 License**
+🔓 Open-source under the **MIT License**.
+
+---
+
+### **🌟 Star this repo if you find it useful! 🌟**
+🙌 PRs and contributions are welcome! Let's build a better **Helm secret & config manager** together. 🚀
diff --git a/docs/wiki/ADRs/001-helm-values-manager.md b/docs/wiki/ADRs/001-helm-values-manager.md
@@ -0,0 +1,61 @@
+# ADR-001: Decision to Implement Helm Values Manager as a Helm Plugin
+
+## Status
+Accepted
+
+## Context
+Managing configurations and secrets across multiple Kubernetes deployments is a complex task. Helm provides a standardized way to manage Kubernetes applications, but it lacks a structured approach for managing per-environment configurations and securely storing secrets.
+
+Key challenges include:
+- Ensuring configurations remain consistent across different environments (e.g., dev, staging, production).
+- Managing sensitive values securely using external secret management systems.
+- Automating the generation of `values.yaml` while integrating with GitOps tools like ArgoCD.
+- Providing a user-friendly CLI that integrates well with Helm workflows.
+
+## Decision
+We have decided to implement the **Helm Values Manager** as a **Helm plugin written in Python**.
+
+### Justification:
+1. **Seamless Helm Integration:** A Helm plugin ensures configurations are managed within the Helm ecosystem without requiring additional tools.
+2. **Python for Implementation:** Libraries like `Typer` enable robust CLI development with autocomplete capabilities.
+3. **Global and Deployment-Specific Configuration Management:** Ensuring consistency across deployments.
+4. **Secret Storage Abstraction:** Securely manages sensitive values by integrating with AWS Secrets Manager, Azure Key Vault, and HashiCorp Vault.
+5. **CLI-Based Approach:** Interactive commands for managing configurations and secrets.
+6. **Autocomplete Support:** Smooth CLI experience.
+7. **ArgoCD Compatibility:** Generates `values.yaml` dynamically for GitOps workflows.
+
+## YAML Structure
+
+```yaml
+release: my-release
+
+deployments:
+  dev:
+    secrets_backend: aws_secrets_manager
+  prod:
+    secrets_backend: azure_key_vault
+
+config:
+  - key: DATABASE_URL
+    path: global.database.url
+    required: true
+    sensitive: true
+    values:
+      dev: "mydb://dev-connection"
+      prod: "mydb://prod-connection"
+  - key: LOG_LEVEL
+    path: global.logging.level
+    required: false
+    sensitive: false
+    values:
+      dev: "debug"
+      prod: "warn"
+```
+
+## Consequences
+- The project will be built as a Helm plugin with Python as the core language.
+- Secret backends must be configured separately for security compliance.
+- Future extensions can include a UI for easier configuration management.
+
+## Decision Outcome
+✅ **Accepted** - Implementation will proceed as a Helm plugin using Python, with structured configuration management, secret integration, and ArgoCD compatibility.
diff --git a/docs/wiki/Design/architecture-overview.md b/docs/wiki/Design/architecture-overview.md
@@ -0,0 +1,76 @@
+# Helm Values Manager - Design Document
+
+## Background
+Helm Values Manager simplifies **configuration and secret management** across multiple Kubernetes deployments. It ensures **secure storage**, **validation**, and **automation** in Helm-based workflows.
+
+## Architecture Overview
+
+The Helm plugin consists of:
+- **CLI Command Interface (Python Typer-based)**: Handles command execution.
+- **Validation Engine**: Ensures required keys have values for each deployment.
+- **Secret Manager Integration**: Supports AWS Secrets Manager, Azure Key Vault, HashiCorp Vault, and Git-Secrets.
+- **values.yaml Generator**: Produces the final Helm-compatible values file.
+- **Helm Plugin System**: Integrates seamlessly with Helm commands.
+
+## Configuration YAML Structure
+
+```yaml
+release: my-release
+
+deployments:
+  dev:
+    secrets_backend: aws_secrets_manager
+  prod:
+    secrets_backend: azure_key_vault
+
+config:
+  - key: DATABASE_URL
+    path: global.database.url
+    required: true
+    sensitive: true
+    values:
+      dev: "mydb://dev-connection"
+      prod: "mydb://prod-connection"
+  - key: LOG_LEVEL
+    path: global.logging.level
+    required: false
+    sensitive: false
+    values:
+      dev: "debug"
+      prod: "warn"
+```
+
+## Secret Manager Extensibility
+Implemented using **Abstract Base Class (ABC)**:
+
+```python
+from abc import ABC, abstractmethod
+
+class SecretManager(ABC):
+    @abstractmethod
+    def get_secret(self, secret_name: str) -> str:
+        pass
+
+    @abstractmethod
+    def store_secret(self, secret_name: str, secret_value: str):
+        pass
+```
+
+## CLI Workflow
+
+### Example Commands
+```sh
+helm values-manager init my-release
+helm values-manager add-key DATABASE_URL --required --sensitive --path=global.database.url
+helm values-manager add-secret DATABASE_URL=mydb://connection --deployment=dev
+helm values-manager validate
+helm values-manager generate --deployment=dev
+```
+
+## Testing Strategy
+- **Unit Tests:** CLI commands, validation logic, storage handling.
+- **Integration Tests:** Secret manager interactions.
+- **E2E Tests:** Full workflow validation.
+
+## Conclusion
+Helm Values Manager is a **secure, scalable, and extensible solution** for Helm-based deployments.
